Loading feed status...

Feed Status

CTI ingestion pipeline health and manual sync controls

AlienVault OTX

AlienVault OTX pulses — threat reports + IOCs

—pending

abuse.ch

ThreatFox + MalwareBazaar — IP/domain/hash IOCs

—pending

CISA KEV

Known Exploited Vulnerabilities — CVE flagging

—pending

RSS Feeds

DFIR Report, Unit 42, Microsoft Security, Talos

—pending

NVD CVE Enrichment

CVSS + CWE enrichment from NVD API

—scheduled

VirusTotal

Sandbox verdicts + malware family for hashes

—scheduled

CVE Delta Ingest

CVElistV5 git repo — last-48h delta of new CVEs + CVSS + affected products

—pending

CVE → Application enrichment

Retries NVD for CVEs missing CPE (vendor/product) data

—pending

EPSS

First.org exploit-probability scoring, daily refreshed

—pending

OSV

OS, distro, kernel advisories — Linux, Debian, Ubuntu, Alpine, Android, OSS-Fuzz, …

—pending

NIST CSF v2

NIST Cybersecurity Framework v2 subcategories + CRI Profile crosswalk

—pending

GHSA (full)

GitHub Security Advisories — full corpus rebase (monthly)

—pending

GHSA (delta)

GitHub Security Advisories — incremental delta (daily)

—pending

Sigma Rules

SigmaHQ detection rules — weekly refresh

—pending

Atomic Red Team

Atomic Red Team adversary-emulation tests — weekly refresh

—pending

Matview refresh

app_technique_groups + package_summary matviews

—pending

D3FEND

Defensive countermeasure mappings to ATT&CK

—pending

Site health (VT self-scan)

VirusTotal self-scan of mitre-explorer.org (weekly)

—pending

SCF (Secure Controls Framework)

Secure Controls Framework XLSX — 1469 controls × ~250 framework mappings, ingested twice a year (Jan/Jul)

—pending

CTI heat refresh (compliance badges)

—pending

Automated Data Tables

CVE Details

CVElistV5 corpus with CVSS, CWE, KEV flag, EPSS enrichment

pending

CVE Weaknesses

CWE weakness categorisation per CVE

pending

Affected Products

CVE ↔ application edges with version ranges

pending

Applications (CVElistV5)

Vendor/product rows extracted from CVE CPE data

pending

GitHub Security Advisories

Reviewed OSS package advisories — npm, PyPI, Maven, Go, …

pending

GHSA CWE Mappings

CWE weakness categorisation per GHSA advisory

pending

GHSA Affected Packages

Per-package vulnerable/fixed version ranges

pending

Packages (derived from GHSA)

Unique (ecosystem, package) pairs across 8 OSS ecosystems

pending

OSV Advisories (OS, distro, kernel)

Non-GHSA ecosystems — Linux, Debian, Ubuntu, Alpine, Android, OSS-Fuzz, …

pending

OSV Affected Packages

Per-package version ranges for OSV advisories

pending

NIST CSF v2 Subcategories

GV/ID/PR/DE/RS/RC functions — 23 subcategories from the 2024 release

pending

NIST CSF v2 → ATT&CK

CRI Profile crosswalk: CSF subcategory → ATT&CK technique

pending

NIST CSF v2 Examples

One-line implementation examples per CSF subcategory

pending

NIST CSF v2 References

Informative references into NIST 800-53 r5 and ISO 27001:2022

pending

D3FEND

Defensive countermeasures from the MITRE D3FEND knowledge graph

pending

Sigma Rules

3,100+ detection rules from SigmaHQ with ATT&CK mappings

pending

Atomic Red Team

1,770+ adversary-emulation tests (PowerShell/bash/batch)

pending

Reference Data (Manual)

OWASP Top 10 (Web, ML, LLM)

30 categories across 3 frameworks — CWEs, ATT&CK techniques, ATLAS techniques

pending

NIST 800-53

5,200+ security controls from NIST 800-53 r5 mapped to ATT&CK

pending

MITRE Engage

Adversary engagement activities — deception and engagement mappings

pending

RE&CT

ATC incident-response playbook actions — Identification, Containment, …

pending

VERIS

Verizon DBIR incident classification (Actor/Action/Asset/Attribute)

pending

Cloud Controls (Azure + GCP)

Cloud provider security controls mapped to ATT&CK techniques

pending

CAPEC → ATT&CK Bridge

CWE → CAPEC → ATT&CK pivot, powers CVE→technique chain

pending

CAPEC Patterns (full taxonomy)

615 attack patterns with prerequisites, skills, consequences, related patterns

pending

CAPEC Mitigations

Per-pattern mitigation guidance from the CAPEC taxonomy

pending

Detection Strategies

ATT&CK v18 detection strategies — high-level detection intent

pending

Detection Analytics

Concrete analytics (pseudo-code / query logic) per detection strategy

pending

ETDA / ThaiCERT Actors

514 external threat actors — country, motivation, MITRE group mapping

pending

ATLAS Cross-References

ATT&CK ↔ ATLAS technique cross-walks (AI/ML adversary TTPs)

pending

CTID CVE → Technique

Hand-curated CVE to ATT&CK technique mappings from MITRE CTID

pending

Loading feed status...

Feed Status

CTI ingestion pipeline health and manual sync controls

AlienVault OTX

AlienVault OTX pulses — threat reports + IOCs

—pending

abuse.ch

ThreatFox + MalwareBazaar — IP/domain/hash IOCs

—pending

CISA KEV

Known Exploited Vulnerabilities — CVE flagging

—pending

RSS Feeds

DFIR Report, Unit 42, Microsoft Security, Talos

—pending

NVD CVE Enrichment

CVSS + CWE enrichment from NVD API

—scheduled

VirusTotal

Sandbox verdicts + malware family for hashes

—scheduled

CVE Delta Ingest

CVElistV5 git repo — last-48h delta of new CVEs + CVSS + affected products

—pending

CVE → Application enrichment

Retries NVD for CVEs missing CPE (vendor/product) data

—pending

EPSS

First.org exploit-probability scoring, daily refreshed

—pending

OSV

OS, distro, kernel advisories — Linux, Debian, Ubuntu, Alpine, Android, OSS-Fuzz, …

—pending

NIST CSF v2

NIST Cybersecurity Framework v2 subcategories + CRI Profile crosswalk

—pending

GHSA (full)

GitHub Security Advisories — full corpus rebase (monthly)

—pending

GHSA (delta)

GitHub Security Advisories — incremental delta (daily)

—pending

Sigma Rules

SigmaHQ detection rules — weekly refresh

—pending

Atomic Red Team

Atomic Red Team adversary-emulation tests — weekly refresh

—pending

Matview refresh

app_technique_groups + package_summary matviews

—pending

D3FEND

Defensive countermeasure mappings to ATT&CK

—pending

Site health (VT self-scan)

VirusTotal self-scan of mitre-explorer.org (weekly)

—pending

SCF (Secure Controls Framework)

Secure Controls Framework XLSX — 1469 controls × ~250 framework mappings, ingested twice a year (Jan/Jul)

—pending

CTI heat refresh (compliance badges)

—pending

Automated Data Tables

CVE Details

CVElistV5 corpus with CVSS, CWE, KEV flag, EPSS enrichment

pending

CVE Weaknesses

CWE weakness categorisation per CVE

pending

Affected Products

CVE ↔ application edges with version ranges

pending

Applications (CVElistV5)

Vendor/product rows extracted from CVE CPE data

pending

GitHub Security Advisories

Reviewed OSS package advisories — npm, PyPI, Maven, Go, …

pending

GHSA CWE Mappings

CWE weakness categorisation per GHSA advisory

pending

GHSA Affected Packages

Per-package vulnerable/fixed version ranges

pending

Packages (derived from GHSA)

Unique (ecosystem, package) pairs across 8 OSS ecosystems

pending

OSV Advisories (OS, distro, kernel)

Non-GHSA ecosystems — Linux, Debian, Ubuntu, Alpine, Android, OSS-Fuzz, …

pending

OSV Affected Packages

Per-package version ranges for OSV advisories

pending

NIST CSF v2 Subcategories

GV/ID/PR/DE/RS/RC functions — 23 subcategories from the 2024 release

pending

NIST CSF v2 → ATT&CK

CRI Profile crosswalk: CSF subcategory → ATT&CK technique

pending

NIST CSF v2 Examples

One-line implementation examples per CSF subcategory

pending

NIST CSF v2 References

Informative references into NIST 800-53 r5 and ISO 27001:2022

pending

D3FEND

Defensive countermeasures from the MITRE D3FEND knowledge graph

pending

Sigma Rules

3,100+ detection rules from SigmaHQ with ATT&CK mappings

pending

Atomic Red Team

1,770+ adversary-emulation tests (PowerShell/bash/batch)

pending

Reference Data (Manual)

OWASP Top 10 (Web, ML, LLM)

30 categories across 3 frameworks — CWEs, ATT&CK techniques, ATLAS techniques

pending

NIST 800-53

5,200+ security controls from NIST 800-53 r5 mapped to ATT&CK

pending

MITRE Engage

Adversary engagement activities — deception and engagement mappings

pending

RE&CT

ATC incident-response playbook actions — Identification, Containment, …

pending

VERIS

Verizon DBIR incident classification (Actor/Action/Asset/Attribute)

pending

Cloud Controls (Azure + GCP)

Cloud provider security controls mapped to ATT&CK techniques

pending

CAPEC → ATT&CK Bridge

CWE → CAPEC → ATT&CK pivot, powers CVE→technique chain

pending

CAPEC Patterns (full taxonomy)

615 attack patterns with prerequisites, skills, consequences, related patterns

pending

CAPEC Mitigations

Per-pattern mitigation guidance from the CAPEC taxonomy

pending

Detection Strategies

ATT&CK v18 detection strategies — high-level detection intent

pending

Detection Analytics

Concrete analytics (pseudo-code / query logic) per detection strategy

pending

ETDA / ThaiCERT Actors

514 external threat actors — country, motivation, MITRE group mapping

pending

ATLAS Cross-References

ATT&CK ↔ ATLAS technique cross-walks (AI/ML adversary TTPs)

pending

CTID CVE → Technique

Hand-curated CVE to ATT&CK technique mappings from MITRE CTID

pending