MITRE ATTACK CTI Python Libary
Project description
ATT&CK Python Client
A Python module to access up-to-date ATT&CK content available in STIX via a public TAXII server. This project leverages python classes and functions from the cti-python-stix2 and cti-taxii-client libraries developed by MITRE.
Goals
- Provide an easy way to access and interact with up-to-date ATT&CK content available in STIX via public TAXII server.
- Allow security analysts to quickly explore ATT&CK content and apply it in their daily operations.
- Allow the integration of ATT&CK content with other platforms to host up to date information from the framework.
- Help security analysts during the transition from the old ATT&CK MediaWiki API to the STIX/TAXII 2.0 API.
- Learn STIX2 and TAXII Client Python libraries
Documentation
https://attackcti.com
Current Status: Production/Stable
The project is currently in a Production/Stable stage, which means that the current main functions are more stable. I would love to get your feedback to make it a better project.
Resources
- MITRE CTI
- OASIS CTI TAXII Client
- OASIS CTI Python STIX2
- MITRE ATT&CK Framework
- ATT&CK MediaWiki API
- Invoke-ATTACKAPI
- Mitre-Attack-API
Requirements
- Python >= 3.0
- stix2 >= 2.1.0
- taxii2-client >= 2.3.0
- six >= 1.16.0
- pydantic
Installation
You can install it via pip:
pip install attackcti
Or you can also do the following:
git clone https://github.com/OTRF/ATTACK-Python-Client
cd ATTACK-Python-Client
pip install .
Contribution
- Now that the project is more stable, It would be great to get your feedback and hopefully get more contributions to the project. Let us know if you have any features in mind. We would love to collaborate to make them happen in the project.
- Check our basic contribution guidelines and submit an issue with your ideas.
- Be concise but clear when adding a title and description to your feature proposal.
- One pull request per issue.
- Select one or more labels when you submit an issue.
- Make sure you are in the correct branch [Master].
- Try to avoid sizeable changes unless warranted.
- Be patient and polite as the project is still relatively small, which is why we would appreciate your help where possible.
Author
- Roberto Rodriguez @Cyb3rWard0g
Official Committers
- Jose Luis Rodriguez @Cyb3rPandaH
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
attackcti-0.5.4.tar.gz
(22.9 kB
view details)
Built Distribution
attackcti-0.5.4-py3-none-any.whl
(22.3 kB
view details)
File details
Details for the file attackcti-0.5.4.tar.gz.
File metadata
- Download URL: attackcti-0.5.4.tar.gz
- Upload date:
- Size: 22.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.0.1 CPython/3.13.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | b6589f8eb71c791a527ec91a662eff150a6b0a6f0642edfea345722cbe8fcb75 |
|
| MD5 | 60c962c0e3e137b37c3489653bfb79b4 |
|
| BLAKE2b-256 | add9583f16ec95bd97b9089ef1a5b388f594b877a48443d421ebfd4761f75f77 |
File details
Details for the file attackcti-0.5.4-py3-none-any.whl.
File metadata
- Download URL: attackcti-0.5.4-py3-none-any.whl
- Upload date:
- Size: 22.3 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.0.1 CPython/3.13.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | b65f41ec9f3f42f097cc4625a312158df6b2261255179efa9ca8d1462d1c0c8b |
|
| MD5 | 76fcbfda692f5188496ab72082d75923 |
|
| BLAKE2b-256 | 022b14389ba551583cbede5a2c599eb80be3606ffffa2036027767b78cb32e48 |
