From e05e758d234a5557e567adc0b9e10b9e858898f2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Gabriel=20PEZ=C3=89?= Date: Tue, 17 Feb 2026 16:33:04 +0100 Subject: [PATCH] [doc] feat(stix): add artifacts informations (3511) --- docs/usage/scenario/security-coverage.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/usage/scenario/security-coverage.md b/docs/usage/scenario/security-coverage.md index 401d9fb0..ee415186 100644 --- a/docs/usage/scenario/security-coverage.md +++ b/docs/usage/scenario/security-coverage.md @@ -66,11 +66,11 @@ After parsing and validating the **Security Coverage STIX** object, OpenAEV foll ![Scenario](assets/scenario-openaev.png) -- **Extract all references** related to Attack Patterns. +- **Extract all references** related to Attack Patterns, DNS or Artifact. - For each **Object Reference** identified: - - If the referenced **Attack Pattern** exists in OpenAEV + - If the referenced **Attack Pattern**, **DNS** or **Artifact** exists in OpenAEV (matched by **External ID** or **Name**) **and** a related [Payload](../payloads/payloads.md) exists that matches the **platforms and architectures** derived from the Asset groups resolved via **Custom Tag Rule labeled `opencti`**.