Skip to content

daveherrald/SA-attck_nav

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

86 Commits
README
README
 
 
appserver
appserver
 
 
bin
bin
 
 
default
default
 
 
lib/splunklib
lib/splunklib
 
 
lookups
lookups
 
 
metadata
metadata
 
 
static
static
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

This repository is part of a larger Adversary Simulation project. The main page includes some installation guidance and information about other components. Please refer there for more information.

This Splunk App is intended to implement the ATT&CK navigator inside of Splunkweb as an "app". It also includes a REST handler to read and update the "Custom Context Menu Options"

GET example (read)

curl -k -u 'admin:changeme' https://localhost:8089/services/app_config

POST example (update)

curl -k -u 'admin:changeme' https://localhost:8089/services/app_config -d '[{"label" : "splunkonline" , "url" : "https://www.splunk.com"},{"label" : "simulate attck", "url" : "/splunkd/__raw/services/run_simulation?attack=~Technique_Name~&id=~Technique_ID~"}]'

About

Splunk App for MITRE Att&CK Navigator(TM)

Resources

Readme
Activity

Stars

23 stars

Watchers

11 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages