sysreptor icon indicating copy to clipboard operation
sysreptor copied to clipboard
verified publisher icon Syslifters

Feature Request – Add MITRE ATT&CK Mapping Field to Vulnerabilities

Open Kaiser11-dev opened this issue 4 months ago • 3 comments

I would like to suggest adding a dedicated field in the vulnerability reporting section to map each finding to its corresponding MITRE ATT&CK technique ID (e.g., T1190 – Exploit Public-Facing Application).

While I understand that this might not be strictly necessary for all use cases, I believe it would provide significant added value by giving a clearer tactical context to each vulnerability.

Thank you for considering this enhancement, as it would bring additional context and value to SysReptor reports.

Kaiser11-dev avatar Aug 09 '25 20:08 Kaiser11-dev

Thank you for this suggestion.

This seems to be possible from a license perspective: https://attack.mitre.org/resources/legal-and-branding/terms-of-use/
(We need to include the license if we add a field.)

aronmolnar avatar Aug 11 '25 05:08 aronmolnar

You could create an enum finding field yourself and add them that way. That's how we do "root cause" including OWASP top 10.

jdelta1 avatar Sep 18 '25 19:09 jdelta1

You could create an enum finding field yourself and add them that way. That's how we do "root cause" including OWASP top 10.

Yup, I will do that way. Should I close this feature request?

Kaiser11-dev avatar Sep 24 '25 10:09 Kaiser11-dev