Structured Threat Information Expression
STIX is a standardized language for describing threat intelligence, such as indicators, threat actors, and attack patterns, in machine-readable form. Teams use it so their tools can automatically ingest and share intel without manual reformatting. It matters because standardized formats let the whole defender community exchange threat data at machine speed.