Package 'mitre'

Title: Cybersecurity MITRE Standards Data and Digraphs
Description: Extract, transform and load MITRE standards. This package gives you an approach to cybersecurity data sets. All data sets are build on runtime downloading raw data from MITRE public services. MITRE <https://www.mitre.org/> is a government-funded research organization based in Bedford and McLean. Current version includes most used standards as data frames. It also provide a list of nodes and edges with all relationships.
Authors: Humbert Costas [aut, cre]
Maintainer: Humbert Costas <[email protected]>
License: CC0
Version: 1.0.0
Built: 2024-11-12 05:12:25 UTC
Source: https://github.com/motherhack3r/mitre

Help Index

ATT&CK Groups Objects.

Description

Full data set provided by MITRE

Usage

attck.groups

Format

A data frame with 11 variables.

ATT&CK Mitigation Objects.

Description

Full data set provided by MITRE

Usage

attck.mitigations

Format

A data frame with 12 variables.

ATT&CK relations Objects.

Description

Full data set provided by MITRE

Usage

attck.relations

Format

A data frame with 13 variables.

ATT&CK software Objects.

Description

Full data set provided by MITRE

Usage

attck.software

Format

A data frame with 12 variables.

ATT&CK tactics Objects.

Description

Full data set provided by MITRE

Usage

attck.tactics

Format

A data frame with 11 variables.

ATT&CK techniques Objects.

Description

Full data set provided by MITRE

Usage

attck.techniques

Format

A data frame with 15 variables.

Extract relationships between standards as edges in a data frame.

Description

from : node id of edge start to : node id of edge end from_std : standard id of edge start to_std : standard id of edge end value : When a value is set, the nodes will be scaled using the options in the scaling object defined above. title : The title is shown in a pop-up when the mouse moves over the edge. arrows : To draw an arrow with default settings a string can be supplied. For example: 'to, from,middle' or 'to;from', any combination with any separating symbol is fine. If you want to control the size of the arrowheads, you can supply an object. dashes : When true, the edge will be drawn as a dashed line. color : Color for the node. hidden : When true, the node will not be shown. It will still be part of the physics simulation though!

Usage

build_edges(verbose = FALSE)

Arguments

verbose

logical, FALSE by default. Change it to see the process messages.

Value

data.frame

Create a list of nodes and edges related to all standards in data folder.

Description

Create a list of nodes and edges related to all standards in data folder.

Usage

build_network(verbose = FALSE, as_igraph = TRUE)

Arguments

verbose

logical, FALSE by default. Change it to see the process messages.
as_igraph

logical, TRUE by default. Change it to get list of nodes and edges.

Value

list, containing nodes and edges as data frames

Examples

mitrenet <- mitre::build_network(as_igraph = FALSE)

Transform all standards as nodes in a data frame.

Description

id : The id of the node unique value for all standard elements. label : The label is the piece of text shown in or under the node, depending on the shape. group : When not undefined, the group of node(s) type : Used as subgroup to classify different object from value : When a value is set, the nodes will be scaled using the options in the scaling object defined above. title : Title to be displayed when the user hovers over the node. The title can be an HTML element or a string containing plain text or HTML. standard : The id of the standard shape : The shape defines what the node looks like. The types with the label inside of it are: ellipse, circle, database, box, text. The ones with the label outside of it are: image, circularImage, diamond, dot, star, triangle, triangleDown, square and icon. color : Color for the node. hidden : When true, the node will not be shown. It will still be part of the physics simulation though! mass : Default to 1. The barnesHut physics model (which is enabled by default) is based on an inverted gravity model. By increasing the mass of a node, you increase it's repulsion. Values lower than 1 are not recommended. description : Description could include extra information or nested data which include other columns from original data frame observation.

Usage

build_nodes(verbose = FALSE)

Arguments

verbose

logical, FALSE by default. Change it to see the process messages.

Value

data.frame

CAPEC categories Objects.

Description

Full data set provided by MITRE

Usage

capec.categories

Format

A data frame with 4 variables.

CAPEC patterns Objects.

Description

Full data set provided by MITRE

Usage

capec.patterns

Format

A data frame with 16 variables.

CAPEC relations Objects.

Description

Full data set provided by MITRE

Usage

capec.relations

Format

A data frame with 4 variables.

CAPEC views Objects.

Description

Full data set provided by MITRE

Usage

capec.views

Format

A data frame with 5 variables.

CAR analytics Objects.

Description

Full data set provided by MITRE

Usage

car.analytics

Format

A data frame with 17 variables.

CAR coverage Objects.

Description

Full data set provided by MITRE

Usage

car.coverage

Format

A data frame with 4 variables.

CAR implementations Objects.

Description

Full data set provided by MITRE

Usage

car.implementations

Format

A data frame with 7 variables.

CAR data model Objects.

Description

Full data set provided by MITRE

Usage

car.model

Format

A data frame with 8 variables.

CAR relations Objects.

Description

Full data set provided by MITRE

Usage

car.relations

Format

A data frame with 2 variables.

CAR sensors Objects.

Description

Full data set provided by MITRE

Usage

car.sensors

Format

A data frame with 5 variables.

Common Platform Enumeration.

Description

Full data set provided by NIST.

Usage

cpe.nist

Format

A data frame with 16 variables: title, cpe.22, cpe.23, and all separated values.

Common Vulnerability Enumeration.

Description

Full data set provided by NIST.

Usage

cve.nist

Format

A data frame with 34 variables: cve.id, problem.type which is related to CWE, description, vulnerable.configuration which is related to CPE, references, cvss3, cvss2 and all separated values.

CWE categories Objects.

Description

Full data set provided by MITRE

Usage

cwe.categories

Format

A data frame with 7 variables.

CWE views Objects.

Description

Full data set provided by MITRE

Usage

cwe.views

Format

A data frame with 7 variables.

CWE Weaknesses Objects.

Description

Full data set provided by MITRE

Usage

cwe.weaknesses

Format

A data frame with 24 variables.

Create an empty node

Description

from : node id of edge start to : node id of edge end from_std : standard id of edge start to_std : standard id of edge end title : The title is shown in a pop-up when the mouse moves over the edge. value : When a value is set, the nodes will be scaled using the options in the scaling object defined above. label : The label of the edge. HTML does not work in here because the network uses HTML5 Canvas. arrows : To draw an arrow with default settings a string can be supplied. For example: 'to, from,middle' or 'to;from', any combination with any separating symbol is fine. If you want to control the size of the arrowheads, you can supply an object. dashes : When true, the edge will be drawn as a dashed line. hidden : When true, the node will not be shown. It will still be part of the physics simulation though! color : Color for the node. hidden : When true, the node will not be shown. It will still be part of the physics simulation though!

Usage

newEdge()

Value

data.frame

Create an empty node

Description

id : The id of the node unique value for all standard elements. label : The label is the piece of text shown in or under the node, depending on the shape. group : When not undefined, the group of node(s) type : Used as subgroup to classify different object from value : When a value is set, the nodes will be scaled using the options in the scaling object defined above. title : Title to be displayed when the user hovers over the node. The title can be an HTML element or a string containing plain text or HTML. standard : The id of the standard shape : The shape defines what the node looks like. The types with the label inside of it are: ellipse, circle, database, box, text. The ones with the label outside of it are: image, circularImage, diamond, dot, star, triangle, triangleDown, square and icon. color : Color for the node. hidden : When true, the node will not be shown. It will still be part of the physics simulation though! mass : Default to 1. The "barnesHut" physics model (which is enabled by default) is based on an inverted gravity model. By increasing the mass of a node, you increase it's repulsion. Values lower than 1 are not recommended. description : Description could include extra information or nested data which include other columns from original data frame observation.

Usage

newNode()

Value

data.frame

SHIELD opportunities Objects.

Description

Full data set provided by MITRE

Usage

shield.opportunities

Format

A data frame with 2 variables.

SHIELD procedures Objects.

Description

Full data set provided by MITRE

Usage

shield.procedures

Format

A data frame with 2 variables.

SHIELD relations Objects.

Description

Full data set provided by MITRE

Usage

shield.relations

Format

A data frame with 3 variables.

SHIELD tactics Objects.

Description

Full data set provided by MITRE

Usage

shield.tactics

Format

A data frame with 4 variables.

SHIELD techniques Objects.

Description

Full data set provided by MITRE

Usage

shield.techniques

Format

A data frame with 4 variables.

SHIELD use cases Objects.

Description

Full data set provided by MITRE

Usage

shield.use_cases

Format

A data frame with 2 variables.