Comments (5)
Hi @HamptonJ,
I'm not entirely sure what you're asking here. To my knowledge all technique (attack-pattern) objects in our catalog have ATT&CK Ids — the first object in the external_references array should always be an ATT&CK ID, marked with the external ID (also called the ATT&CK ID), the collection name (mitre-attack, mitre-mobile-attack, or mitre-pre-attack, depending on the domain), and the URL the technique can be found at — see this example.
Could you clarify what you meant by "attack-patterns that don't have external IDs," and cite any specific examples?
from cti.
Thanks for the response @isaisabel, and sorry for the delay. It's been a while since I initially made this issue but I think what I meant is that, in "stix-capec.json", all external reference objects have a property of "external_id". If the external id isn't CWE-xxx or something similar, it is REF-xxx. My question was, is there a plan to add the "Ref-xxx" ids to "enterprise-attack.json"? Please let me know if you'd like additional information! Thanks for your time
from cti.
Here is an example. The first picture is from stix-capec.json, which includes the "ref-xxx" properties, the second is from enterprise-attack.json, which doesn't.
from cti.
Hi @HamptonJ,
The "REF-XXX" ids in the CAPEC converted external references are probably a result of the way the references are stored in the CAPEC XML files. I'm not sure there is anything equivalent in ATT&CK.
from cti.
Closing due to inactivity.
from cti.
Related Issues (20)
- Mitre Taxii Service Throwing 502 Errors
- Some revoked attack pattern miss the revoked-by relation in mobile domain HOT 2
- x_mitre_domains field for x-mitre-matrices populated only for ics
- Microsoft Defender Detection HOT 4
- [T1059.009] Cloud API - Typo in source name HOT 2
- v13.0 bundle ids match in both mitre/cti and mitre-attack/attack-stix-data, but content is different
- x_mitre_data_sources missing for Mobile ATT&CK attack-patterns HOT 2
- ICS platform information
- Some relationship missing when v12, v13 release HOT 2
- Alias of APT37 has a typo HOT 1
- The CAPEC dataset is not updated with the one available on capec.mitre.org
- Missing Some Records in 'Data Sources' HOT 1
- Request for ATT&CK version to be added to objects
- ATT&CK attack-patterns no longer have external_references to CAPEC HOT 1
- Bug: All MITRE ATT&CK ICS Techniques have "x_mitre_platforms": [ "None" ] HOT 2
- Certificate Expired
- cti-taxii.mitre.org timing out since Saturday, March 2, 2024 HOT 1
- https://cti-taxii.mitre.org seems to be down HOT 4
- Bad URL for "Dell PSP ZeuS" in "T1001.101 Junk Data" in the 11.0, 12.0, 13.0, and 14.1 MITRE ATT&CK Frameworks HOT 1
- Taxii Server seems to be timing out HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from cti.