Skip to content
This repository has been archived by the owner on Dec 11, 2023. It is now read-only.

CSV techniques for mitigations, groups and software #23

Merged
merged 9 commits into from
May 1, 2020
Merged

CSV techniques for mitigations, groups and software #23

merged 9 commits into from
May 1, 2020

Conversation

emmanvg
Copy link
Contributor

@emmanvg emmanvg commented Apr 27, 2020

Generates CSV data for all Groups (GXXXX) and Mitigations (MXXXX) objects matched against the ATT&CK ID (TXXXX) via Relationships. All the content is sorted by the Technique ID first, followed by the Group or Mitigation ID.

In this script the Technique ID is the primary column and it is performed to the complete data set but it might contain design elements relevant to mitre-attack/attack-website#135

@isaisabel isaisabel self-requested a review April 27, 2020 12:26
isaisabel
isaisabel suggested changes Apr 27, 2020
View reviewed changes
Copy link
Contributor

@isaisabel isaisabel left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a solid script. I added a few inline comments, mostly just documentation-level stuff. Additional thoughts:

  • Would it be difficult to add a "software" mapping (operation) option? It seems like it should be almost identical to the do_groups functionality. This would be especially easy if do_mitigations and do_groups were refactored into a single function as proposed in the inline review.
  • Should target develop, not master. We do staged releases on this repo.
  • Addition of this script should also be documented in the changelog. See the raw develop changelog for a formatting example.

scripts/README.md Outdated Show resolved Hide resolved
scripts/filter_techniques_by_category.py Outdated Show resolved Hide resolved
scripts/filter_techniques_by_category.py Outdated Show resolved Hide resolved
scripts/filter_techniques_by_category.py Outdated Show resolved Hide resolved
@emmanvg emmanvg changed the base branch from master to develop April 27, 2020 17:35
@emmanvg
consolidate do_groups, do_mitigations into a singular method `do_…
82b14d8 
…mapping`

add support to for `software` operation, fix issue not allowing mobile-attack operations
@emmanvg
docstring changes made from PR feedback, renamed file to `technique_m…
8260223 
…appings_to_csv.py`
@emmanvg
update CHANGELOG.md
425c6c9
@emmanvg
Copy link
Contributor Author

emmanvg commented Apr 29, 2020

@isaisabel, let me know if I missed anything. Hopefully all your suggestions have been incorporated.

@emmanvg emmanvg changed the title CSV techniques for mitigations and groups CSV techniques for mitigations, groups and software Apr 29, 2020
isaisabel
isaisabel suggested changes Apr 30, 2020
View reviewed changes
scripts/technique_mappings_to_csv.py Outdated Show resolved Hide resolved
@emmanvg
Update technique_mappings_to_csv.py
c8c9534 
Add `tqdm` module to provide estimate of procedure completion
@isaisabel isaisabel merged commit dc7a8a9 into mitre-attack:develop May 1, 2020
@emmanvg emmanvg deleted the csv-techniques-for-mitigations-and-groups branch May 1, 2020 14:32
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@isaisabel isaisabel isaisabel approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@emmanvg @isaisabel