d3fend-ontology icon indicating copy to clipboard operation
d3fend-ontology copied to clipboard

Published 20 hours ago verified publisher icon d3fend

Offense techniques with no mappins to defense techniques in ATT&CK Extractor

Open DramaticallyDecayed opened this issue 2 years ago • 1 comments

Hi! I have a question.

I don't know if this is a proper place for this question so I can repost it if it will be necessary..

There is a technique called 'Asset Vulnerability Enumeration' that can be applied to 'Digital Artifact'. So it seems it can be mapped to any attack technique.

When I use ATT&CK Extractor I saw this technique in different defense technique lists for different attack techniques, e.g. T1562.004 is mapped to 'Configuration Inventory' and 'Asset Vulnerability Enumeration'.

But there are attack techniques that are not mapped to any defense technique, e.g T1622. It seems that it is because such techniques cannot be mapped to anything except 'Asset Vulnerability Enumeration'.

Is this an expected behavior?

Thanks a lot!

DramaticallyDecayed avatar Nov 17 '22 22:11 DramaticallyDecayed

Thank you for the report, we'll look into this.

netfl0 avatar Dec 01 '22 14:12 netfl0