Structured Threat Information Expression (STIX) is a language and serialization format used to exchange cyber threat intelligence (CTI). STIX enables organizations to share CTI with one another in a consistent and machine-readable manner, allowing security communities to better understand what computer-based attacks they are most likely to see and to anticipate and/or respond to those attacks faster and more effectively. STIX is designed to improve many different capabilities, such as collaborative threat analysis, automated threat exchange, automated detection and response, and more.
The objects and features added for inclusion in STIX 2.1 represent an iterative approach to fulfilling basic consumer and producer requirements for CTI sharing. Objects and properties not included in this version of STIX, but deemed necessary by the community, will be included in future releases.
Grab the following from https://github.com/oasis-open/cti-stix-validator/blob/master/stix2validator/v21/enums.py#L133
- IANA Media (MIME) types
- IANA Character Sets
- IANA Service Name and Transport Protocol Port Number Registry
- IANA IP Flow Information Export (IPFIX) Entities
Also, grab the other arrays from the bottom of that file.
Maybe grab the relationship tables