MITRE ATT&CK
App Vendor: The MITRE Corporation
App Category: IT Services
Connector Version: 1.0.1
API Version: 1.0.0
About App
MITRE ATT&CK is a documented collection of information about the malicious behaviors advanced persistent threat (APT) groups have used at various stages in real-world cyberattacks.
The MITRE ATT&CK app is configured with the Orchestrate application to perform the following actions:
Action Name | Description |
|---|---|
Get Software List: need to remove | This action retrieves a list of dictionaries. Each dictionary represents a software or tool and its important attributes. |
Get All Groups - APT: need to remove | This action retrieves a list of dictionaries. Each dictionary represents a group and its important attributes. |
Get Techniques: need to remove | This action retrieves a list of dictionaries. Each dictionary represents a technique and its important attributes. |
Get Group List | This action retrieves a list of groups. |
Get Data Source List | This action retrieves a list of data sources. |
Get Group and Technique Relations | This action retrieves a list of relations between groups and techniques. |
Get Software List | This action retrieves a list of software or tools. |
Get a List of Techniques | This action retrieves a list of techniques. |
Get a List of Techniques Used by Group : need to remove | This action retrieves details of softwares used by the specified group. |
Get Techniques Used by a Group | This action retrieves a list of techniques used by the specified group. |
Get Software Used by a Group | This action retrieves a list of software used by the specified group. |
Get Groups by Technique | This action retrieves a list of groups that use the specified technique. |
Get Techniques Used by Data Source | This action retrieves a list of techniques used by the specified data source. |
Get Technique Details by Name | This action retrieves details of a particular technique. |
Get Software Details by Name | This action retrieves the details of the specified software. |
Get Group Details by Name | This action retrieves details of the specified group. |
Configuration Parameters
The following configuration parameters are required for the MITRE ATT&CK app to communicate with the MITRE ATT&CK enterprise application. The parameters can be configured by creating instances in the app.
Configuration Parameters
This connector does not require any configuration parameters.
Action: Get Group Details by Name
This action retrieves details of the specified group.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Group Name | Enter the name of the group for which you want to retrieve details. | Text | Required | Use the Get Group List API to retrieve a list of available groups. |
Action: Get Software Details by Name
This action retrieves the details of the specified software.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Software Name | Enter the name of the software for which you want to retrieve details. | Text | Required | Use the Get Software List API to retrieve a list of available software. |
Action: Get Technique Details by Name
This action retrieves can be used to get the details of a particular technique.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Technique Name | Enter the name of the technique for which you want to retrieve details. | Text | Required | Use the Get Technique List API to retrieve a list of available techniques. |
Action: Get Techniques Used by a Group
This action retrieves a list of techniques used by the specified group.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Group Name | Enter the name of the group for which you want to retrieve details. | Text | Required | Use the Get Group List API to retrieve a list of available groups. |
Action: Get Data Source List
This action retrieves a list of data sources.
Action Input Parameters
This action does not require any input parameters.
Action: Get Group List
This action retrieves a list of groups.
Action Input Parameters
This action does not require any input parameters.
Action: Get Group and Technique Relations
This action retrieves a list of relations between groups and techniques.
Action Input Parameters
This action does not require any input parameters.
Action: Get Software List
This action retrieves a list of software or tools.
Action Input Parameters
This action does not require any input parameters.
Action: Get Software Used by a Group
This action retrieves a list of software used by the specified group.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Group Name | Enter the name of the group for which you want to retrieve details. | Text | Required | Use the Get Group List API to retrieve a list of available groups. |
Action: Get Groups by Technique
This action retrieves a list of groups that use the specified technique.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Technique Name | Enter the name of the technique for which you want to retrieve details. | Text | Required | Use the Get Technique List API to retrieve a list of available techniques. |
Action: Get Techniques Used by Data Source
This action retrieves a list of techniques used by the specified data source.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Data Source | Enter the data source for which you want to retrieve details. | Text | Required | Use the Get Data Source List API to retrieve a list of available data sources. |
Action: Get Technique List
This action retrieves a list of techniques.
Action Input Parameters
This action does not require any input parameters.