Mapping ATT&CK to CVE for Impact
This research defines a methodology for using MITRE ATT&CK® to characterize the potential impacts of vulnerabilities. ATT&CK’s tactics …
Threat Report Attack Mapper V1
TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE …
Security Stack Mappings – Amazon Web Services
This project empowers organizations with independent data on which native AWS security controls are most useful in defending against the …
ATT&CK Integration into VERIS V1
This project created a mapping and translation layer between VERIS and ATT&CK that allows ATT&CK to describe the adversary behaviors that …
Atomic Data Sources
Cyber threat detection starts with understanding the data sources and sensors that can be used to detect a given adversary TTP. Motivated by a …
Security Stack Mappings – Azure
This project empowers organizations with independent data on which native Azure security controls are most useful in defending against the …
ATT&CK Workbench V1
ATT&CK Workbench is an easy-to-use open-source tool that allows organizations to manage and extend their own local version of ATT&CK and …
ATT&CK for Containers
This project investigated the viability of adding container-related techniques into MITRE ATT&CK, leading to the development of an ATT&CK …
Menupass Adversary Emulation Plan
menuPass is a threat group that has been active since at least 2006. Individual members of menuPass are known to have acted in association with …
ATT&CK for Cloud
This project refined and expanded MITRE ATT&CK’s coverage of adversary behaviors in cloud environments. Through our research, we refactored …
Caldera Pathfinder
This open-source CALDERA plugin helps you understand what a vulnerability exposes to an adversary and what potential destructive paths an …
FIN6 Emulation Plan
FIN6 is a cyber-crime group that has stolen payment card data and sold it for profit on underground marketplaces. This group has aggressively …