Releases · center-for-threat-informed-defense/attack-flow

This release of Attack Flow includes some highly requested features as well as a slew of under-the-hood improvements.

Splash screen: improve user experience by showing a splash screen.
Autocomplete: fill in ATT&CK tactics and techniques with autocompletion of TIDs or keywords.
Recover unsaved work: if you close a tab, hit back, reload, etc. without saving changes, you now have the option to recover flows that were edited but not saved.
Search in flow: navigate large flows quickly by searching for text that appears anywhere in the flow.

The Attack Flow format is unchanged in this release. It is backward compatible with all 2.0.0 flows. Note that the Attack Flow Builder has stricter validation rules, and some pre-existing flows may have new validation errors appear when you open this. This is normal and expected.

This major update to Attack Flow is based on community feedback from Attack Flow 1 and extensive collaboration with our research partners. The major improvements include:

The new specification is based on STIX 2.1 and addresses known limitations and feedback on the Attack Flow 1 specification.
Completely overhauled Attack Flow Builder tool: more powerful and more user-friendly.
Greatly expanded the documentation (you’re reading it right now!) to provide a better ramp up for learning Attack Flow as well as more depth when you’re ready to become an Attack Flow expert.
Added a dozen new attack flows to the public corpus. These flows are useful for learning Attack Flow, for evaluating future changes to the Attack Flow specification, and data mining.

This release is not backwards-compatible with 1.0.0.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Releases: center-for-threat-informed-defense/attack-flow

Attack Flow 2.1.7

Attack Flow 2.1.6

Attack Flow 2.1.5

Attack Flow 2.1.4

Attack Flow 2.1.3

Attack Flow 2.1.2

Attack Flow 2.1.1

Attack Flow 2.1.0

Attack Flow v2.0.1

Attack Flow v2.0.0