See FAQ on Sweat Equity for how we are defining sweat equity.
See FAQ on physical attendance eligiblity for how sweat equity affects physical attendance eligiblility.
The intent of this sweat equity page is for organizations to announce prior to the meeting what resources they will be bringing to the meeting.
This will be organized three different ways:
- by organization (e.g. HII, IBM, NSA, sFractal, etc)
- by techology (e.g. Kestrel, OpenC2, PACE, SBOM, etc)
- by use case (e.g. ransomware, comply-to-connect, BEC, etc)
The primary focus should be on organization i.e. companies/agencies supplying content of what they will be supplying. See FAQ on contributing sweat equity for how to do that. Organizations are encouraged to also provide a video. See FAQ on videos
Once organization contribs are in, we can collectively fill in the tecnology and use cases i.e. if HII, IBM, and sFractal interact with OpenC2 in a ransomware use case, then we can put text/links in OpenC2 and Ransomware reflecting that. Hopefully well come up with some sort of table or matrix.
See FAQ on documenting sweat equity for process of documenting your sweat equity.
Organizations are encouraged to save/use test data for their demonstrations. For example OpenC2 Test Data has sample OpenC2 commands. E.g. the following is an example OpenC2 query command:
{
"action": "query",
"target": {
"features": ["versions", "profiles", "pairs"]
}
}
If commands being used are not already there, please add them and refer to them in your sweat equity. If you can't/won't add to test data, please at least add to your sweat equity page.
The equivilent repo for CACAO examples is https://github.com/oasis-tcs/cacao/tree/master/Examples/CACAO-2.0.
Add here for STIX, IoB, TAC, etc.
- Afero
- CISA
- CTIN
- Cybeats
- Cydarm
- DKI
- HII
- IBM
- NSA
- OnePlanet
- Podii
- RIT
- sFractal
- USC
- add in alphabetical order linked to subdirs
- add in alphabetical order linked to subdirs
- use sweat equity template as a template for subdir README.md
- CACAO
- CSAF
- IoB
- Kestrel
- NIEMOpen
- OHDF
- OpenC2
- OXA
- PACE
- SARIF
- SBOM
- Spyderisk
- STIX/TAXII
- STIX Shifter
- TAC
- VEX
- VSMI
- Ransomware
- Comply to Connect (C2C)
- Business Email Compromise (BEC)