attack-datasources

attack-datasources copied to clipboard

Key is x_mitre_is_subtechnique is not present in current MITRE STIX data. Replaced it with is_subtechnique.

rav1and3

KeyError: "['x_mitre_is_subtechnique'] not in index"

1

- This error occurs in the notebook_functions.py file at the get_attack_dataframe function. **Below Commands in .ipnyb file reproduce this error:** `attack = get_attack_dataframe()` `attack.head()` output : > KeyError Traceback (most...

System-CTL

The notebooks_function.py (https://github.com/mitre-attack/attack-datasources/blob/main/docs/scripts/notebook_functions.py#L11) script in this repo uses the attackcti library (https://github.com/OTRF/ATTACK-Python-Client). The following function is used in the python script in this repo: https://github.com/mitre-attack/attack-datasources/blob/main/docs/scripts/notebook_functions.py#L38-L40 The `remove_revoked` reference does not...

Cyb3rWard0g

New relationships by Open Threat Research (OTR)

4

1- Data Source / Component: Driver / driver metadata - driver loaded: Sysmon event 6 gives us security context of a driver being loaded. It does not give us any...

Cyb3rPandaH

Support NIDS and WAF via new 'network traffic content' relationship

2

Hello. With the new DS structure NIDS and WAF are no longer available. A new relationship could be created in order to improve the mapping with alert related events: *...

hxnoyd

Add Creation / user / created

RemiBarjot

minor change, spelling mistake (pods=> pod)

RemiBarjot

Minor changes, spelling mistakes (instances => instance)

RemiBarjot

Missing elements

RemiBarjot

Missing elements and mistake correction (Modification : modified / object = user / object )

RemiBarjot