-
Notifications
You must be signed in to change notification settings - Fork 8
Home
enter_the_matrix (ETM) was originally created to ease the suffering of those who are tasked with creating threat matrices as recommended in the NIST SP-800-30r1. Over time, this project has evolved to include semi-automated graph generation as a replacement for Maltego graphs. The introduction of the MITRE ATT&CK framework has also extended the functionality present in ETM, allowing the user to map specific events in an attack chain to corresponding ATT&CK techniques. With the introduction of MITRE ATT&CK, threat tress have also been added. These trees are designed to illustrate the entire picture of an assessment spanning all of the scenarios involved. Currently, ETM supports integrations with other applications by means of a built-in API that allows an application to interact directly with Assessments, Scenarios, Events, and Templates. Additionally, the API can provide certain usage statistics surrounding the application's use.
This wiki serves as a hub for installation instructions, usage examples, and methodology discussion. The API documentation is not provided here, but is available once ETM is deployed at https://deployment-location/swagger/.