- Update library to work with ATT&CK v16.0 new platform names
- Update release information for ATT&CK 15.1... for real this time
- Update release information for ATT&CK 15.1
- Added functionality to
MitreAttackDatato retrieve a list of Procedure Examples by technique. #172 - Updated
navlayersmodule to support Navigator version 5.0.0.
- Fixed a layer comparison issue causing false warnings to appear during layer operations. #173.
- Update release information for ATT&CK 15.0
- Added support for searching relationships by content in
get_objects_by_content.py. #164 - Updated copyright year.
- Add font size parameter to svg config. #160
- Fixed the placement of the grey subtechnique bars in
svg_objects.py. #166 - Fixed readthedocs build.
- Fixed bug where self.src wasn't iterable in
get_objects_by_content().
- Add mobile datasources to excel output.
- Update release information for ATT&CK 14.1
- Fix logic for finding deprecated ATT&CK objects in
changelog_helper.py.
- Added support for Assets to the
MitreAttackData,attackToExcel,diffStix, andnavlayersmodules. - Updated
navlayersmodule to support Navigator Layer File Format version 4.5. #98
- Set all columns in Excel files Relationships tabs the same. #136
- mitreattack.stix20.MitreAttackData can now be initialized with a stix2.MemoryStore instead of just a STIX file.
- Addressed issue in mitreattack/stix20/MitreAttackData.py which was causing duplicate Group entries. #149
- Updated toSvg() to address an underlying Pillow update. #140
- Fixed issue that caused some relationships to be excluded from the results. #128
- Updated documentation to include links to all the latest example scripts.
- Downloading STIX in changelog_helper is more resilient
- Fix issue with minimum version of drawsvg in setup.py
- Changelog Helper: Ignore order when creating diff
- Changelog Helper: Attempt to download STIX multiple times
- Update release information for ATT&CK 13.1
- Add ATT&CK v13.0 release SHA256 hashes
- Update sorting logic for detections and mitigations in changelog JSON format
- Fix logic error for handling versions of ATT&CK objects in changelog helper
- Fix bug in get_all_software_used_by_all_groups() (Credit: @jmsarn)
- Update categories for changelog helper script
- Fix issue with getting revoked STIX objects
- Fix dependency on drawSvg, pinning it to <2.0.0
- Add functionality to
mitreattack/diffStix/changelog_helper.pyto provide changed Mitigations and Detections.
- Add full docstrings to most functions in
mitreattack/diffStix/changelog_helper.py.
- Add
download_attack_stixcommand that allows you to quickly download ATT&CK releases
- Fix an issue in the navlayers module where the legend is not generated in the SVG export when
SVGConfig.legendDocked=false#99 - Fix Unicode display issue on detailed changelog page
- Tests now run against local STIX files instead of TAXII server, speeding them up drastically
- Fix links to example scripts #100
- Fix issue with diff_stix entrypoint when using the mitre/cti repository as the upstream source
- Fix issue with Excel generation for Tactic names.
- Fix Tactic names on Technique worksheets in exported Excel workbooks #96
- Fix exported Excel workbooks to include data source information about the ICS domain #97
- [Breaking change] Improve the changelog helper to produce much more granular details as needed #79
- Add a new library module,
MitreAttackData, for working with ATT&CK data, including the functions and relationships microlibrary from the CTI USAGE document. #90
- Fix SVG export to hide disabled techniques when hideDisabled is True #89
- Fix SVG export to display platforms and legend items
- Fix parsing of link dividers in layer files #94
- Fix issue with retrieving technique ATT&CK IDs when generating a Navigator layer from the taxii server #82
- Fix data component parsing in diffStix changelog script
- Fix JSON support for diffStix changelog script
- Add support for campaigns to the diffStix changelog script #93
- Fix SVG export functionality #74
- Finish switching from
outputDirtooutput_dir(the breaking change broke ourselves! But this itself isn't a breaking change)
- Fix Excel file generation for previous ATT&CK versions #88
- Changed attackToExcel's
write_excel()andexport()function parameters to use snake case instead of camel case (outputDirbecameoutput_dir)
- Fix GitHub Actions pipeline to be able to publish to PyPI
- Releasing a new version due to broken 1.5.8 package deployed from modified development environment
- GitHub Actions now publish releases from tags instead of from local development environments
- Autoformatted code with black, and set up flake8 to lint as a GitHub Action going forward
- Fix ability to construct SVG files from TAXII data #76
- Filter subtechniques in platforms in attacktoexcel #84
- Gracefully handle missing kill chain phases
- Fix Excel parsing for x-data-components
- Fix logic error in Excel export when exporting from local file
- Allow Excel to be exported from local STIX file without needing to download from GitHub
- Fix Excel output for datasources/components to display correctly
- Handle issue where there is a missing revoked relationship in the new STIX bundle
- Make diffStix compatible back to python 3.5
- Add diffStix module to be able to generate changelogs between different STIX bundles
- Improved efficency of Excel generation capability
- Patched core layer code to properly store 8-hex colors
- Patched core layer code to properly handle non-ascii characters when ingesting text
- Patched core layer code to properly initialize layers during instantiation
- Patched core layer code to properly support Metadata, MetaDiv, Link, LinkDiv instantiation
- Added storage support for transparency in gradient colors (rendering support will follow)
- Library now supports unicode characters in layers (UTF-16)
- Patched core layer code to support minor changes in the 4.3 layer format
- Added documentation regarding Release process
- Added documentation regarding Contributing
- Added standard test framework
- Fixed tactic parsing in AttackToExcel so tactics are capitalized correctly in the output (Command and Control instead of Command And Control)
- Corrected minor mistakes in the README documentation of some cli scripts
- Added support for multiple CAPEC IDs for a single technique in AttackToExcel
- Tweaked AttackToExcel permissions sorting
- Added parsing for all technique permissions in AttackToExcel
- Added support for ATT&CK Layer format 4.3
- Added support for ATT&CK Workbench as a datasource
- Added parsing for CAPEC IDs in AttackToExcel
- Added support for data sources and data components when generating layers
- Added parsing for relationship references/citations in AttackToExcel
- Updated stix2 and taxii2-client module version requirements to avoid potential bug
- Created Collections module
- Added method and cli to turn a collection index into a markdown file for human readability
- Added method and cli to turn a collection into a collection index for summary purposes
- Added method and cli to turn raw stix data into a collection
- Added method and cli to allow for bulk layer generation (expands generator module)
- Added Data Sources and Data Components support to attackToExcel
Minor release that downgrades the required version of taxii2-client to 2.2.2 due to a bug in 2.3.0.
This release introduces generator functionality to the library, as well as some improvements to excel matrix generation through attackToExcel.
- Addresses potential import issues for some operating systems
- Updated attackToExcel to include platform information when generating excel matrices
- Added layer generation capabilities to the library
- Added a cli integration for the layer generation capabilities
This bug fix patches a few outstanding issues with the library
- Added missing fields to attackToExcel technique output:
- Enterprise: Impact Type, System Requirements, Effective Permissions
- Mobile: Tactic Type
- Fixed typing mismatch in layerobj that caused issues with manipulator scripting
- Fixed potential loading issue with enumeration that could cause issues with manipulator scripting
- Improved error message handling during layer initialization
This bug fix patches the ability to use the library with local data sources
- Addressed issue with matrixGen initialization failing for local data sources
This update adds some convenience features to make it easier to create layers programmatically, as well as documentation on how to do so.
- Made it possible to directly initialize Layer objects in core
- Created README documenting how to create layers programmatically through various approaches
With the release of the ATT&CK Navigator Layer version 4.2, this library now supports the new aggregateScore functionality and associated format changes.
- Added Layer format v4.2 compatibility.
- Added aggregateScore functionality to both the svg and excel exporting modules.
- Updated exporting modules and their initialization arguments to utilize copies of provided input layers.
- Added filtering functionality based on Platforms when generating a Matrix during export.
- Addressed issue with attackToExcel imports failing in some environments.