MITRE EMB3D: Library & CLI for working with the MITRE EMB3D framework.
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Project description
MITRE EMB3D
A CLI, MCP Server, & AI based Threat Analysis for https://emb3d.mitre.org/
Run
Via uvx
uvx mitre-emb3d --help
uvx mitre-emb3d --pprint properties Networking --level 3
Add to your project
The project can be used both as a tool & library
uv add mitre-emb3d
What this project enables!!
AI Driven Embedded Project Threat Analysis
- Determine which device properties are applicable to your project
- Do threat analysis
- Generate a detailed project report and heatmap
uvx mitre-emb3d ai --repo <path-to-repo> --config config.toml map-properties
uvx mitre-emb3d ai --repo <path-to-repo> --config config.toml threat-analysis
uvx mitre-emb3d ai --repo <path-to-repo> --config config.toml gen-site
See the documentation & guides for more information on configuration https://mitre-emb3d.readthedocs.io/en/latest/guides/
CLI & MCP Server
You can use the CLI or MCP server or both to build your own solutions
- List device properties for a given category
- List threats for a given category
- List threats for a given device property
- List device properties for a certain threat
- List mitigations for a given threat
- Get detailed information about a threat
- Get detailed information about a mitigation
- A CLI - AI Agent first (returns JSON output) / For humans add
--pprintto see beautiful ouput - An MCP Server
Example -
$ uvx mitre-emb3d --pprint list-threats-for-category "Networking"
- TID-221: Authentication Bypass By Message Replay
- TID-222: Critical System Service May Be Disabled
- TID-310: Remotely Accessible Unauthenticated Services
- TID-316: Incorrect Certificate Verification Allows Authentication Bypass
- TID-317: Predictable Cryptographic Key
- TID-318: Insecure Cryptographic Implementation
- TID-401: Undocumented Protocol Features
- TID-404: Remotely Triggerable Deadlock/DoS
- TID-405: Network Stack Resource Exhaustion
- TID-406: Unauthorized Messages or Connections
- TID-407: Missing Message Replay Protection
- TID-408: Unencrypted Sensitive Data Communication
- TID-410: Cryptographic Protocol Side Channel
- TID-411: Weak/Insecure Cryptographic Protocol
- TID-412: Network Routing Capability Abuse
Note --pprint (default is OFF, default output is JSON) for display
Explore other commands using the CLI help
Usage: mitre-emb3d [OPTIONS] COMMAND [ARGS]...
╭─ Options ────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────╮
│ --version Show the version of CLI and exit │
│ --release TEXT 2.0.1, 2.0 ... [default: 2.0.1] │
│ --loglevel -l TEXT Set the logging level (debug, info, warning, error, critical) [default: warning] │
│ --pprint --no-pprint Whether to pretty-print the output (e.g. JSON lists) [default: no-pprint] │
│ --install-completion Install completion for the current shell. │
│ --show-completion Show completion for the current shell, to copy it or customize the installation. │
│ --help Show this message and exit. │
╰──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────╯
╭─ Commands ───────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────╮
│ list-categories List the categories │
│ list-properties-for-category List properties for a certain category │
│ list-properties-for-threat List properties for a certain threat │
│ list-threats-for-category List threats for a certain category │
│ list-threats-for-property List threats for a certain device property │
│ list-mitigations List mitigations for a certain threat │
│ threat Threat Information │
│ mitigation Mitigation Information │
│ mcp Launch the MCP server │
│ ai AI related commands │
╰──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────╯
MCP Server
At the moment only STDIO is supported
For your mcp.json add the server like this
{
"servers": {
"mitre-emb3d": {
"command": "uvx",
"args": ["mitre-emb3d", "mcp"]
}
}
}
Use mcp inspector to play with the MCP Server
npx -y @modelcontextprotocol/inspector uvx mitre-emb3d mcp
Project details
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
mitre_emb3d-0.6.0.tar.gz
(285.1 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file mitre_emb3d-0.6.0.tar.gz.
File metadata
- Download URL: mitre_emb3d-0.6.0.tar.gz
- Upload date:
- Size: 285.1 kB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
dc1bcb02701964fe6e86e715afd8b4f2249dd8734c36c7cceafbee38c650f7fb
|
|
| MD5 |
3747226f06644a249f9e631b99c35a90
|
|
| BLAKE2b-256 |
f659912e213fb04a8bcf366cd456557a2d3dfa976990bb23ade5124e6fb773f0
|
Provenance
The following attestation bundles were made for mitre_emb3d-0.6.0.tar.gz:
Publisher:
publish.yaml on ksachdeva/mitre-emb3d
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
mitre_emb3d-0.6.0.tar.gz -
Subject digest:
dc1bcb02701964fe6e86e715afd8b4f2249dd8734c36c7cceafbee38c650f7fb - Sigstore transparency entry: 1189208059
- Sigstore integration time:
-
Permalink:
ksachdeva/mitre-emb3d@a686f138cbf8c21356cca964cec7bd3de69a27ed -
Branch / Tag:
refs/tags/0.6.0 - Owner: https://github.com/ksachdeva
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
publish.yaml@a686f138cbf8c21356cca964cec7bd3de69a27ed -
Trigger Event:
release
-
Statement type:
File details
Details for the file mitre_emb3d-0.6.0-py3-none-any.whl.
File metadata
- Download URL: mitre_emb3d-0.6.0-py3-none-any.whl
- Upload date:
- Size: 52.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
771dd4ea54d45a4c1c24729e19b218caebbff233f970559eb3550b6e0f31ee40
|
|
| MD5 |
56d141e65257df0bc89be488a9a76366
|
|
| BLAKE2b-256 |
cd8dcc670b12011a3d5675874905e6d84e39ea3e336f888d2aa58fa91fb904ae
|
Provenance
The following attestation bundles were made for mitre_emb3d-0.6.0-py3-none-any.whl:
Publisher:
publish.yaml on ksachdeva/mitre-emb3d
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
mitre_emb3d-0.6.0-py3-none-any.whl -
Subject digest:
771dd4ea54d45a4c1c24729e19b218caebbff233f970559eb3550b6e0f31ee40 - Sigstore transparency entry: 1189208060
- Sigstore integration time:
-
Permalink:
ksachdeva/mitre-emb3d@a686f138cbf8c21356cca964cec7bd3de69a27ed -
Branch / Tag:
refs/tags/0.6.0 - Owner: https://github.com/ksachdeva
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
publish.yaml@a686f138cbf8c21356cca964cec7bd3de69a27ed -
Trigger Event:
release
-
Statement type:
