MITRE ATT&CK and CAPEC Datasets in STIX 2.0 Logo

MITRE ATT&CK and CAPEC Datasets in STIX 2.0

0
Free
Visit Website

This repository contains the MITRE ATT&CK® and CAPEC™ datasets expressed in STIX 2.0. See USAGE or USAGE-CAPEC for information on using this content with python-stix2. If you are looking for ATT&CK represented in STIX 2.1, please see the attack-stix-data GitHub repository. Both MITRE/CTI (this repository) and attack-stix-data will be maintained and updated with new ATT&CK releases for the foreseeable future, but the data model of attack-stix-data includes quality-of-life improvements not found on MITRE/CTI. Please see the attack-stix-data USAGE document for more information on the improved data model of that repository.

FEATURES

ALTERNATIVES

Pulsedive is a threat intelligence platform that provides frictionless threat intelligence for growing teams, offering features such as indicator enrichment, threat research, and API integration.

FireEye Mandiant SunBurst Countermeasures: freely available rules for detecting malicious files and activity

Curated datasets for developing and testing detections in SIEM installations.

Signature-based YARA rules for detecting and preventing threats within Linux, Windows, and macOS systems.

A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel

A platform providing an activity feed on exploited vulnerabilities.

Container of 200 Windows EVTX samples for testing detection scripts and training on DFIR.

A curated collection of Sigma & Yara rules and Indicators of Compromise (IOCs) for threat detection and malware identification.

PINNED