Skip to main content

ATTACK CTI Libary

Project description

ATT&CK Python Client

Binder Open_Threat_Research Community Open Source Love svg1

A Python module to access up to date ATT&CK content available in STIX via public TAXII server. This project leverages the python classes and functions of the cti-python-stix2 and cti-taxii-client libraries developed by MITRE.

Goals

  • Provide an easy way to access and interact with up to date ATT&CK content available in STIX via public TAXII server
  • Allow security analysts to quickly explore ATT&CK content and apply it in their daily operations
  • Allow the integration of ATT&Ck content with other platforms to host up to date information from the framework
  • Help security analysts during the transition from the ATT&CK MediaWiki API to the STIX/TAXII 2.0 API
  • Learn STIX2 and TAXII Client Python libraries

Current Status: Production/Stable

The project is currently in a Production/Stable stage, which means that the current main functions are more stable. I would love to get your feedback to make it a better project.

Updates

  • 11/23/2020 - Added ICS ATT&CK functionality (PRE-ATTACK is deprecated but still available through the library to not break current deployments that leverage it)

Resources

Getting Started

Attackcti Docs

Requirements

Python 3+

Installation

You can install it via PIP:

pip install attackcti

Or you can also do the following:

git clone https://github.com/OTRF/ATTACK-Python-Client
cd ATTACK-Python-Client
pip install .

Author

Official Committers

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for attackcti, version 0.3.4.3
Filename, size File type Python version Upload date Hashes
Filename, size attackcti-0.3.4.3-py3-none-any.whl (10.9 kB) File type Wheel Python version py3 Upload date Hashes View
Filename, size attackcti-0.3.4.3.tar.gz (11.4 kB) File type Source Python version None Upload date Hashes View

Supported by

AWS AWS Cloud computing Datadog Datadog Monitoring DigiCert DigiCert EV certificate Facebook / Instagram Facebook / Instagram PSF Sponsor Fastly Fastly CDN Google Google Object Storage and Download Analytics Pingdom Pingdom Monitoring Salesforce Salesforce PSF Sponsor Sentry Sentry Error logging StatusPage StatusPage Status page