Skip to content

v1.4.1

Compare
Choose a tag to compare
@marcusbakker marcusbakker released this 24 Oct 10:46
· 584 commits to master since this release

CLI

  • Added a new argument (-p/--platform) to the data source, detection and visibility menu that allows you to overwrite, when generating a Navigator layer, the platform value(s) as specified in the YAML file.
    • This also improves the group menu, as this now allows you to specify multiple ATT&CK platforms by providing extra -p/--platform arguments.
  • Changed how ATT&CK Groups are specified within the group menu. No longer are multiple Groups provided using a double-quoted string in which Groups are separated by commas. Instead, multiple Groups can be provided by additional -g/--group arguments.
  • Updated all Python packages.
  • Bug fixes:
    • Crash on updating a techniques file based on a data source when having null values in the date key-value pair in the visibility score_logbook. (already pushed to master before the release of 1.4.1)
    • Issue #36 reported by @driesbuyck. DeTT&CT crashed when generating a detection or visibility layer file when having a technique administration file with different Python date formats. (already pushed to master before the release of 1.4.1)
    • Detections with a score of -1, or visibility items with a score of 0 were included in the graph showing the progression of added detection/visibility over time. (already pushed to master before the release of 1.4.1)
    • Within particular circumstances the update of visibility scores, based on updated data sources, would not write the updated technique YAML file to disk.
    • Techniques with a detection score of 0 and a visibility score of 0 where coloured white within a detection/visibility overlay instead of purple.

Editor

  • Moved the maximise icon within text fields more to the left to improve the user experience for browsers running on Windows.
  • The list editor for the detection's locations no longer shows empty values. This improves the user experience.
  • Removed the service worker module to solve a caching problem that could prevent a new version of the Editor from being loaded in the browser.
  • Updated all JavaScript dependencies.
  • Bug fixes:
    • The detection score slider was missing the score 0 (already pushed to master before the release of 1.4.1)
    • A very long group name would run off the page.

Generic

  • Added threat intelligence data from Cisco Talos: 20200901-Cisco-Talos.yaml
    • (already pushed to master before the release of 1.4.1)