Recommended
Recommended
More Related Content
Similar to MITRE ATT&CK Updates: Software
Similar to MITRE ATT&CK Updates: Software (20)
More from MITRE ATT&CK
More from MITRE ATT&CK (20)
Recently uploaded
Recently uploaded (20)
MITRE ATT&CK Updates: Software
- 1. MITRE ATT&CK® Updates: Software Jared Ondricek, ATT&CK Software Development Lead, MITRE @jondrice /jondricek © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12.
- 2. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Who Am I § ATT&CK Software Development Lead § Open Source advocate § My team manages § attack.mitre.org § ATT&CK Navigator § ATT&CK Workbench § TAXII server § mitreattack-python library § STIX representation of ATT&CK
- 3. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. ATT&CK Software Highlights since March 2022 Website Improvements Navigator Updates Detailed ATT&CK Changelog ATT&CK Workbench Contributions Documentation
- 4. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Website Improvements: Search gif of the search bar on attack.mitre.org with the spinner endlessly spinning Classic search experience • 40-120 seconds • Browser began indexing after clicking search box • Reset search index on every visited page March 2023 Improvements • Near instantaneous • Index built upon initial page load • Search index loaded into browser once (per release)
- 5. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Website Improvements: Search gif of the search bar on attack.mitre.org with search working
- 6. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Website Improvements: Resizable Sidebar gif of resizable sidebar on attack.mitre.org August 2023 • Sidebar is now resizable! • Sidebar state saved across whole website • Only available on desktop
- 7. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Website Improvements: Mobile Navigation Classic experience • Groups and Software pages • Grouped together in 13 groups by letter • Not fully collapsible gif of old mobile navigation view on attack.mitre.org
- 8. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Website Improvements: Mobile Navigation September 2023 • A single grouping to scroll through • Completely collapsible • Starts collapsed gif of new mobile navigation view on attack.mitre.org
- 9. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. ATT&CK Navigator Improvements § 2022 § Added Mobile sub-Techniques in v11 § Added Campaigns in v12 § Added Workbench compatibility § Create Navigator layers from STIX bundles or Workbench Collections § 2023 § Addressed 13 issues from the backlog § Improved download workflow functionality § Adding Assets in v14
- 10. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. ATT&CK Navigator Improvements Export workflow improvements • Declutter menu bar • New options • Download single layer (JSON) • Download all layers (JSON) • Export single layer (Excel) • Export all layers (Excel) • Render layer (SVG) • Only download visible techniques Current Next release
- 11. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. ATT&CK Navigator Improvements: Search for Assets
- 12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Detailed ATT&CK Changelog https://attack.mitre.org/docs/changelogs/v12.1-v13.0/changelog-detailed.html gif of the detailed ATT&CK changelog
- 13. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. ATT&CK Workbench Contributions § Oct 2022: v1.2.0 § 10 bugfixes, 30 new features and improvements § Authentication: anonymous or OpenID Connect (OIDC) § Add Reference Manager page § Add Campaign support § 2023 § Multiple releases, and a new minor release next week! § 17 bugfixes, 26 new features and improvements § Create and manage teams of users § View recent activity § Import via CSV or XLSX files
- 14. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Documentation New Documentation site! • Specific to mitreattack-python library • Provide easier to use examples • May eventually replace mitre/cti USAGE.md documentation • We use it ourselves as well!
- 15. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. Documentation https://mitreattack-python.readthedocs.io
- 16. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. ATT&CK Software Highlights Recap Website Improvements Navigator Updates Detailed ATT&CK Changelog ATT&CK Workbench Contributions Documentation And lots more!
- 17. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. © 2023 THE MITRE CORPORATION. ALL RIGHTS RESERVED. APPROVED FOR PUBLIC RELEASE. DISTRIBUTION UNLIMITED 23-00696-12. https://attack.mitre.org attack@mitre.org @mitreattack Jared Ondricek @jondrice @jondricek