infosecn1nja
/
DeTTECT
mirror of https://github.com/infosecn1nja/DeTTECT.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
405 Commits
1 Branch
17 Tags
12 MiB
Commit Graph

24 Commits (61510f8a879508d81ab416512ee5c3dca7362e13)

Author SHA1 Message Date
Marcus Bakker 164871cda5 Improved the handling of the -p/--platform argument 2020-10-24 12:32:06 +02:00
Marcus Bakker 42709dc9de Added support for providing the ATT&CK platform and updated how ATT&CK Groups are provided via the CLI 2020-10-15 11:04:07 +02:00
Marcus Bakker 18fa311441 Fixed a typo 2020-07-10 08:14:51 +02:00
Ruben Bouman f77aed3ef0 Functionality to update to sub-techniques, including an option to provide a local stix path. Also updated sample YAML file. 2020-06-29 15:52:26 +02:00
Ruben Bouman 4c7ff2f095 Color shading for overlay files. 2020-06-18 17:01:16 +02:00
Ruben Bouman 217980bbd3 Introduced new option to set the name of the Navigator layer 2020-06-08 16:56:56 +02:00
Ruben Bouman 1ac6a4ce78 - Added output_filename as option for datasource, visbility, detection and group modes. 
- Fixed bug when having both dates and datetimes in techniques YAML file.
 2020-05-25 11:44:13 +02:00
Ruben Bouman bb7586bd88 editor rename, print message when running editor.py 2020-03-10 08:48:03 +01:00
Marcus Bakker 0b76609c16 name change 2020-03-04 10:45:00 +01:00
Ruben Bouman 61b30b2fff Added the YAML editor to DeTT&CT 2020-02-20 12:02:27 +01:00
Ruben Bouman c18dc294ed Typo 2019-12-12 15:50:27 +01:00
Marcus Bakker 26af7a4e26 Several small changes in some text. 2019-12-11 10:43:08 +01:00
Marcus Bakker afea99cfee Added new functionality to include all ATT&CK techniques when generating a YAML file based on a data source YAML file. 2019-12-09 15:26:48 +01:00
Marcus Bakker 93dea65bbf Added a health check for when the data source YAML file is missing an ATT&CK data source 2019-12-05 10:43:07 +01:00
Marcus Bakker 734aceebe3 Removed unnecessary code from the function "data_source_search" 2019-11-19 11:28:01 +01:00
Marcus Bakker 7aacb7feb1 A fix for a bug that broke EQL searches on Data Source Administration YAML files 2019-11-19 10:10:15 +01:00
Ruben Bouman b5f970b8c2 Added support for new platforms of ATT&CK October update: AWS, GCP, Azure, Azure AD, Office 365, SaaS. 
Added support for using multiple values in platform attribute in data sources administration and techniques administration files.

Added health check on platform attribute in techniques administration file.

Updated support for ATT&CK Navigator layer version 2.2.
 2019-11-04 14:48:58 +01:00
Marcus Bakker 98067447c6 Implemented a health check for data source administration YAML files. 2019-08-20 11:14:07 +02:00
Ruben Bouman 7ad8fe16c7 added same kind of graph for visibility as for detection 2019-08-15 16:00:06 +02:00
Marcus Bakker 08b4c9c1ec Made the necessary changes to be compatible with the interactive menu. 2019-08-13 14:28:43 +02:00
Marcus Bakker 3d66ab004a - Added new CLI arguments for EQL queries. 
- Removed the CLI argument '-a, --applicable' (replaced by EQL queries).
 2019-08-08 14:17:31 +02:00
Marcus Bakker cf4a55081c Added new functionality for Mitigations statistics 2019-08-01 15:02:06 +02:00
Marcus Bakker 6be77c3260 - Multiple functions made "private". 
- Added new menu options.
 2019-07-31 10:14:47 +02:00
Marcus Bakker 0a80380fe2 Changed name from DeTTACT to DeTTECT 2019-07-08 10:39:15 +02:00