Pyattck - A Python Module To Interact Amongst The Mitre Att&Ck Framework
H5N1 Python Module to interact amongst the Mitre ATT&CK Framework.
pyattck has the next notable features inward it's electrical flow release:
- Retrieve all Tactics, Techniques, Actors, Malware, Tools, too Mitigations
- All techniques convey suggested mitigations every bit a property
- For each cast you lot tin access additional information nearly related information points:
- Actor
- Tools used past times the Actor or Group
- Malware used past times the Actor or Group
- Techniques this Actor or Group uses
- Malware
- Actor or Group(s) using this malware
- Techniques this malware is used with
- Mitigation
- Techniques related to a specific gear upwardly of mitigation suggestions
- Tactic
- Techniques institute inward a specific Tactic (phase)
- Technique
- Tactics a technique is institute in
- Mitigation suggestions for a given technique
- Actor or Group(s) identified every bit using this technique
- Tools
- Techniques that the specified tool is used within
- Actor or Group(s) using a specified tool
Installation
OS X & Linux:
pip install pyattckpip install pyattckUsage example
To role pyattck you lot must instantiate a Attck object:
from pyattck import Attck assault = Attck()- actor
- malware
- mitigation
- tactic
- technique
- tools
from pyattck import Attck assault = Attck() # accessing actors for business office musician inward attack.actors: print(actor) # accessing malware used past times an business office musician or grouping for malware inward actor.malware: print(malware) # accessing tools used past times an business office musician or grouping for tool inward actor.tools: print(tool) # accessing techniques used past times an business office musician or grouping for technique inward actor.techniques: print(technique) # accessing malware for malware inward attack.malwares: print(malware) # accessing business office musician or groups using this malware for business office musician inward malware.actors: print(actor) # accessing techniques that this malware is used inward for technique inward malware.techniques: print(technique) # accessing mitigation for mitigation inward attack.mitigations: print(mit) # accessing techni ques related to mitigation recommendations for technique inward mitigation.techniques: print(technique) # accessing tactics for tactic inward attack.tactics: print(tactic) # accessing techniques related to this tactic for technique inward tactic.techniques: print(technique) # accessing techniques for technique inward attack.techniques: print(technique) # accessing tactics that this technique belongs to for tactic inward technique.tactics: print(tactic) # accessing mitigation recommendations for this technique for mitigation inward technique.mitigation: print(mitigation) # accessing actors using this technique for business office musician inward technique.actors: print(actor) # accessing tools for tool inward attack.tools: print(tool) # accessing techniques this tool is used inward for technique inward tool.techniques: print(technique) # accessing business office musician or groups using this tool for business office musician inward tool.actors: print(actor)Release History
- 1.0.0
- Initial unloose of pyattck to PyPi
- 1.0.1
- Updating Documentation amongst novel reference links
Meta
Josh Rickard – @MSAdministrator – rickardja@live.com
Distributed nether the MIT license. See
LICENSE for to a greater extent than information.Contributing
- Fork it (https://github.com/swimlane/pyattck/fork)
- Create your characteristic branch (
git checkout -b feature/fooBar) - Commit your changes (
git commit -am 'Add about fooBar') - Push to the branch (
git force root feature/fooBar) - Create a novel Pull Request
