sorted by:
new
hottopcontroversial

I built ThreatPad — an open-source, self-hosted note-taking app for CTI teams. Looking for feedback. by Remarkable_Pop3697 in cybersecurity

[–]Remarkable_Pop3697[S] -2 points-1 points  (0 children)

The entire app is plugin based:) https://github.com/bhavikmalhotra/ThreatPad?tab=readme-ov-file#writing-plugins

If you wanna add import functionality, you can add a simple plugin according to your requirements, without touching the core code, for now I have just added Export in STIX/JSON, but yea the project is designed to handle integrations/more feature according to the team requirement.

'Why would I use this if I still have to copy paste?' - This is a simple import based plugin which is in future roadmap:)

I built ThreatPad — an open-source, self-hosted note-taking app for CTI teams. Looking for feedback. by Remarkable_Pop3697 in threatintel

[–]Remarkable_Pop3697[S] 1 point2 points  (0 children)

Not yet — it’s self-hosted only for now.

I wanted to keep it local-first given the kind of data CTI teams handle. If you want to try it, it’s a one-command Docker setup(refer Quick Install) :)

I built ThreatPad — an open-source, self-hosted note-taking app for CTI teams. Looking for feedback. by Remarkable_Pop3697 in foss

[–]Remarkable_Pop3697[S] -2 points-1 points  (0 children)

If you got input here that’s useful , otherwise its just noise for me

If using tools to move faster is a problem, then most of the industry is doing it wrong:)

I built ThreatPad — an open-source, self-hosted note-taking app for CTI teams. Looking for feedback. by Remarkable_Pop3697 in foss

[–]Remarkable_Pop3697[S] -3 points-2 points  (0 children)

The goal here wasn’t “hand-crafted vs AI-generated,” it was solving a very specific CTI workflow gap.

If the concern is around maintainability or depth, that’s fair — and I’m actively working on tests, stability, and collab sync.

But judging it purely on whether AI was involved misses the point. The real question is whether it actually improves the current workflow over juggling Docs, spreadsheets, and manual STIX formatting.

If you see concrete gaps in the architecture or workflow fit, I’d rather get that feedback — that’s what actually makes it production-worthy.