This version 2.1.0 is not the most recent version of documentation. Click here for the latest version.  MITRE ATT&CK App for Splunk® - Documentation

Release Notes:

Version 2.1.0

• Date: 25 Feb 2020
• Added a new view for mapping rules to Techniques
• Updated lookup tables and some searches accordingly

Version 2.0.1

• Date: 12 Feb 2020
• Bug fix for appinspect validation
• Tactics overview displayed as table with updated js and css

Version 2.0.0

• Date: 08 Feb 2020
• Updated lookup tables to correctly define MITRE ATT&CK tactics and techniques
• Introduced a new macro to utilize technique and tactic IDs/names
• Updated dashboards to utilize new lookup table and macro
• Performance improvements
• Updated CSS and JS files
• Introduced a setup view for ease of initial lookup generation

Version 1.3.0

• Date: 09 Jan 2020
• Updated ATT&CK Matrix dashboard
• Added new dashboard for detailed view of triggered rules by notable assets and tactics/techniques
• Improved search performance and dependency on lookups
• Added a new lookup to match correlation rules to MITRE ATT&CK tactics/techniques

Version 1.2.1

• Date: 24 Oct 2019
• Bug fixes with javascript table population
• Ordering of table fields to align with MITRE ATT&CK content

Version 1.2.0

• Date: 24 Aug 2019
• Bug fixes & typos
• Sphinx documentation is added

Version 1.1.0

• Date: 06 Aug 2019
• Bug fixes & typos
• Added descriptions to dashboards
• Added improvements for initial lookup generator

Version 1.0.0

• Date: 25 Jul 2019
• Initial version for Splunkbase
• Test to run on 7.3.0 and ES App 5.3