-
Notifications
You must be signed in to change notification settings - Fork 24
/
Copy pathcontrols.html
231 lines (224 loc) · 17.2 KB
/
controls.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.5/css/bootstrap.min.css">
<link rel="stylesheet" href="https://use.typekit.net/cxn6qie.css">
<script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/jquery.devbridge-autocomplete/1.2.27/jquery.autocomplete.min.js"></script>
<title>Control Validation Compass | Controls Lookup | Threat Modeling Aide & Purple Team Content Repository</title>
<link rel="icon" type="image/x-icon" href="docs/images/cvc.png">
<meta name="twitter:card" content="summary" />
<meta name="twitter:site" content="@IntelScott" />
<meta name="twitter:title" content="Control Validation Compass | Controls Lookup | Threat Modeling Aide & Purple Team Content Repository" />
<meta name="twitter:description" content='Lookup attacker technique-mapped detections and tests across your security stack' />
<meta name="twitter:image" content="https://raw.githubusercontent.com/ControlCompass/ControlCompass.github.io/main/docs/images/cvc.png" />
<style>
html {
scroll-behavior: smooth;
}
body {
font-family: montserrat, sans-serif;
font-weight: 400;
font-style: normal;
}
.aligncenter { text-align:center }
.btn { color: black; padding: 11px; cursor: pointer; text-align:center }
.emphasis { border: 2px solid black; border-color: #e7e7e7; color: black; }
.emphasisCheck { border: 2px solid black; border-color: #e7e7e7; color: black; }
.emphasis:hover { background: #e7e7e7; }
.choice:hover { background: #e7e7e7; }
.run { font-size:18px; border: 2px solid #1565c0; background: #ffffff; color: #1565c0 }
.run:hover { background: #ACCDE7; color: #1565c0 }
.details { height: auto; overflow: hidden; transition: max-height ease-in-out; transition-duration: var(--duration, 0.3s); }
.summary { cursor: pointer; display: list-item; }
.block { display: block }
.output_red_twoCol { padding-top: 3px; padding-right: 3px; padding-bottom: 3px; padding-left:150px }
.output_red_twoCol:hover { border: 2px solid #efc9d0; border-radius:5px }
.output_blue_twoCol { padding-top: 3px; padding-right: 3px; padding-bottom: 3px; padding-left:150px }
.output_blue_twoCol:hover { border: 2px solid #ACCDE7; border-radius:5px }
.output_red_threeCol { padding-top: 3px; padding-right: 3px; padding-bottom: 3px; padding-left:60px }
.output_red_threeCol:hover { border: 2px solid #efc9d0; border-radius:5px }
.output_blue_threeCol { padding-top: 3px; padding-right: 3px; padding-bottom: 3px; padding-left:60px }
.output_blue_threeCol:hover { border: 2px solid #ACCDE7; border-radius:5px }
.output_policy { padding-top: 3px; padding-right: 3px; padding-bottom: 3px; padding-left:60px }
.output_policy:hover { border: 2px solid #e7e7e7; border-radius:5px }
.p { }
.outputDetails_twoCol { padding-top: 6px; padding-right: 6px; padding-bottom: 6px; padding-left:150px }
.outputDetails_threeCol { padding-top: 6px; padding-right: 6px; padding-bottom: 6px; padding-left:60px }
</style>
</head>
<body>
<div class="col" style="height:110px;width:89%;float:left">
<p style="text-align:right;padding:10px 18% 0px 0px">
<a href="https://controlcompass.github.io/"><img src="docs/images/cvc-banner_color4-2.png" alt="Control Validation Compass" style="width:67%;max-width:654px"></a>
</p>
</div>
<div class="col" style="height:110px;width:11%;float:right;padding:20px 40px 0px 0px">
<p style="text-align:right;padding:3px">
<a class="github-button" href="https://github.com/ControlCompass/ControlCompass.github.io" data-icon="octicon-star" data-show-count="true" aria-label="Star ControlCompass/ControlCompass.github.io on GitHub">Star</a>
<br>
<a class="github-button" href="https://github.com/ControlCompass/ControlCompass.github.io/fork" data-icon="octicon-repo-forked" data-show-count="true" aria-label="Fork ControlCompass/ControlCompass.github.io on GitHub">Fork</a><br>
<a
class="nav-link"
href="https://github.com/tropChaud" target="_blank" style="text-align:right;padding:1px"
><svg
xmlns="http://www.w3.org/2000/svg"
width="20"
height="20"
fill="#dddddd"
class="bi bi-github footer-icons"
viewBox="0 0 16 16"
>
<path
d="M8 0C3.58 0 0 3.58 0 8c0 3.54 2.29 6.53 5.47 7.59.4.07.55-.17.55-.38 0-.19-.01-.82-.01-1.49-2.01.37-2.53-.49-2.69-.94-.09-.23-.48-.94-.82-1.13-.28-.15-.68-.52-.01-.53.63-.01 1.08.58 1.23.82.72 1.21 1.87.87 2.33.66.07-.52.28-.87.51-1.07-1.78-.2-3.64-.89-3.64-3.95 0-.87.31-1.59.82-2.15-.08-.2-.36-1.02.08-2.12 0 0 .67-.21 2.2.82.64-.18 1.32-.27 2-.27.68 0 1.36.09 2 .27 1.53-1.04 2.2-.82 2.2-.82.44 1.1.16 1.92.08 2.12.51.56.82 1.27.82 2.15 0 3.07-1.87 3.75-3.65 3.95.29.25.54.73.54 1.48 0 1.07-.01 1.93-.01 2.2 0 .21.15.46.55.38A8.012 8.012 0 0 0 16 8c0-4.42-3.58-8-8-8z"
/></svg
> TropChaud</a><br>
<a
class="nav-link"
href="https://twitter.com/IntelScott" target="_blank" style="text-align:right;padding:1px"
><svg
xmlns="http://www.w3.org/2000/svg"
width="20"
height="20"
fill="#dddddd"
class="bi bi-twitter footer-icons"
viewBox="0 0 16 16"
>
<path
d="M5.026 15c6.038 0 9.341-5.003 9.341-9.334 0-.14 0-.282-.006-.422A6.685 6.685 0 0 0 16 3.542a6.658 6.658 0 0 1-1.889.518 3.301 3.301 0 0 0 1.447-1.817 6.533 6.533 0 0 1-2.087.793A3.286 3.286 0 0 0 7.875 6.03a9.325 9.325 0 0 1-6.767-3.429 3.289 3.289 0 0 0 1.018 4.382A3.323 3.323 0 0 1 .64 6.575v.045a3.288 3.288 0 0 0 2.632 3.218 3.203 3.203 0 0 1-.865.115 3.23 3.23 0 0 1-.614-.057 3.283 3.283 0 0 0 3.067 2.277A6.588 6.588 0 0 1 .78 13.58a6.32 6.32 0 0 1-.78-.045A9.344 9.344 0 0 0 5.026 15z"
/></svg
> @IntelScott</a>
</p>
</div>
<div style="text-align:center">
<a href="https://controlcompass.github.io/risk" class="btn choice"><strong>Threat Alignment</strong></a>
<a href="https://controlcompass.github.io/threat-model" class="btn choice"><strong>Threat Model</strong></a>
<a href="https://controlcompass.github.io/controls" class="btn emphasis"><strong>Lookup by Controls</strong></a>
<a href="https://controlcompass.github.io/ttps" class="btn choice"><strong>TTP Research</strong></a>
<a href="https://controlcompass.github.io/resources" class="btn choice"><strong>Knowledge Center</strong></a>
</div>
<div id="main" style="padding:0px 10px 0px 10px;margin-left:2%;margin-right:2%">
<p style="padding:15px 15px 0px 15px;text-align:center;font-size:16px">Lookup attacker technique-mapped detections & tests across your security stack</p><br>
<div class="row" style="margin-left:6%;margin-right:6%">
<div class="col-md-12">
<p style="font-size:14px">Toggle the controls & testing capabilities used in your environment or otherwise relevant to you.</p>
<button type="button" id="uncheck-box" class="button" style="background:#e7e7e7">Uncheck all boxes</button>
<button type="button" id="check-all" class="button" style="background:#e7e7e7">Check all boxes</button>
<h4>Policy/Process Controls</h4>
<p style="font-size:16px;margin:5px 0px">Frameworks</p>
<label><input type="checkbox" value="" id="mitigations" style="margin-right:5px" checked>MITRE ATT&CK Mitigations</label>
<label><input type="checkbox" value="" id="nist" style="margin-right:5px;margin-left:10px" checked>NIST 800-53 Mappings</label>
<label><input type="checkbox" value="" id="cis" style="margin-right:5px;margin-left:10px" checked>CIS Controls</label>
<label><input type="checkbox" value="" id="d3fend" style="margin-right:5px;margin-left:10px" checked>MITRE D3FEND</label>
<label><input type="checkbox" value="" id="engage" style="margin-right:5px;margin-left:10px" checked>MITRE Engage</label>
<h4>Defensive Capabilities</h4>
<p style="font-size:16px;margin:5px 0px">Network & Endpoint Telemetry - Native Controls</p>
<label><input type="checkbox" value="" id="splunk" style="margin-right:5px" checked>Splunk</label>
<label><input type="checkbox" value="" id="splunk_threatHunting" style="margin-right:5px;margin-left:10px" checked>Threat Hunting Splunk App</label>
<label><input type="checkbox" value="" id="elastic" style="margin-right:5px;margin-left:10px" checked>Elastic Stack</label>
<label><input type="checkbox" value="" id="eql_analytics" style="margin-right:5px;margin-left:10px" checked>EQL Analytics Library</label>
<label><input type="checkbox" value="" id="sentinel_defender" style="margin-right:5px;margin-left:10px" checked>Microsoft Sentinel & Defender (Unified)</label>
<label><input type="checkbox" value="" id="azure_sentinel" style="margin-right:5px;margin-left:10px" checked>Sentinel detection mappings</label>
<label><input type="checkbox" value="" id="logpoint" style="margin-right:5px;margin-left:10px" checked>LogPoint</label>
<p style="font-size:16px;margin:5px 0px">Network & Endpoint Telemetry - Network & Endpoint Telemetry - Third-Party Rule Repositories</p>
<label><input type="checkbox" value="" id="car" style="margin-right:5px" checked>Cyber Analytics Repository</label>
<label><input type="checkbox" value="" id="atc" style="margin-right:5px;margin-left:10px" checked>Atomic Threat Coverage</label>
<label><input type="checkbox" value="" id="sigma" style="margin-right:5px;margin-left:10px" checked>Sigma rules public repository</label>
<label><input type="checkbox" value="" id="th_playbook" style="margin-right:5px;margin-left:10px" checked>ThreatHunter Playbook</label>
<p style="font-size:16px;margin:5px 0px">Network Telemetry</p>
<label><input type="checkbox" value="" id="proofpoint_emergingThreats" style="margin-right:5px" checked>Network Security Monitoring rule mappings</label>
<p style="font-size:16px;margin:5px 0px">Endpoint Telemetry</p>
<label><input type="checkbox" value="" id="tanium_threatResponse" style="margin-right:5px" checked>Tanium Threat Response</label>
<p style="font-size:16px;margin:5px 0px">Cloud</p>
<label><input type="checkbox" value="" id="azure_fullStack" style="margin-right:5px" checked>Azure full stack mappings</label>
<label><input type="checkbox" value="" id="aws" style="margin-right:5px;margin-left:10px" checked>AWS security control mappings</label>
<label><input type="checkbox" value="" id="gcp" style="margin-right:5px;margin-left:10px" checked>GCP Community Security Analytics</label>
<h4>Offensive Capabilities</h4>
<label><input type="checkbox" value="" id="art" style="margin-right:5px" checked>Atomic Red Team</label>
<label><input type="checkbox" value="" id="car_red" style="margin-right:5px" checked>Cyber Analytics Repository</label>
<label><input type="checkbox" value="" id="rta" style="margin-right:5px;margin-left:10px" checked>Red Team Automation</label>
<label><input type="checkbox" value="" id="prelude" style="margin-right:5px;margin-left:10px" checked>Prelude Community TTPs</label>
<label><input type="checkbox" value="" id="stockpile" style="margin-right:5px;margin-left:10px" checked>CALDERA Stockpile</label>
<label><input type="checkbox" value="" id="scythe" style="margin-right:5px;margin-left:10px" checked>Scythe</label>
</div>
</div>
<div class="col-md-12 text-center">
<details style="margin-left:6%;margin-right:6%">
<summary class="summary block" style="font-size:18px">
<br>
<span class="glyphicon glyphicon-chevron-down" aria-hidden="true" style="padding:0px 5px 0px 0px"></span>Advanced Options
</summary>
<div class="col-md-12 text-center" style="padding:10px">
<span id="modify" style="text-align:center;margin-right:10px;font-size:13px">The output has the following settings by default. You can modify them as desired to expand or further refine the techniques covered:</span>
</div>
<div class="col-md-12 text-center" style="padding:4px">
<label><input type="checkbox" value="" id="lowestLevel" style="margin-right:5px;padding:5px" checked><a href="https://controlcompass.github.io/resources#lowestLevelSummary" style="text-decoration:underline" target="_blank">'Lowest-level'</a> techniques only</label>
</div>
<div class="col-md-12 text-center" style="padding:10px 0px 20px 0px">
<span id="tactics" style="text-align:center;margin-right:10px;font-size:16px"><a href="https://attack.mitre.org/tactics/enterprise/" style="text-decoration:underline" target="_blank">Tactics</a>:</span>
<label><input type="checkbox" value="" id="reconnaissance" style="margin-right:5px;padding:5px">Reconnaissance</label>
<label><input type="checkbox" value="" id="resourceDevelopment" style="margin-right:5px;padding:5px">Resource Development</label>
<label><input type="checkbox" value="" id="initialAccess" style="margin-right:5px;padding:5px" checked>Initial Access</label>
<label><input type="checkbox" value="" id="defenseEvasion" style="margin-right:5px;padding:5px" checked>Defense Evasion</label>
<label><input type="checkbox" value="" id="commandAndControl" style="margin-right:5px;padding:5px" checked>Command and Control</label>
<label><input type="checkbox" value="" id="discovery" style="margin-right:5px;padding:5px" checked>Discovery</label>
<label><input type="checkbox" value="" id="collection" style="margin-right:5px;padding:5px" checked>Collection</label>
<label><input type="checkbox" value="" id="persistence" style="margin-right:5px;padding:5px" checked>Persistence</label>
<label><input type="checkbox" value="" id="credentialAccess" style="margin-right:5px;padding:5px" checked>Credential Access</label>
<label><input type="checkbox" value="" id="privilegeEscalation" style="margin-right:5px;padding:5px" checked>Privilege Escalation</label>
<label><input type="checkbox" value="" id="lateralMovement" style="margin-right:5px;padding:5px" checked>Lateral Movement</label>
<label><input type="checkbox" value="" id="execution" style="margin-right:5px;padding:5px" checked>Execution</label>
<label><input type="checkbox" value="" id="exfiltration" style="margin-right:5px;padding:5px">Exfiltration</label>
<label><input type="checkbox" value="" id="impact" style="margin-right:5px;padding:5px">Impact</label>
<br>
</div>
</details>
<br>
</div>
<br>
<div class="row">
<div class="col-md-12 text-center">
<button type="button" id="process-data" class="btn run" style="padding:8px 10px;width:22%">Show Me the Mappings!
<span class="glyphicon glyphicon-play" aria-hidden="true"></span>
</button>
</div>
</div>
<br>
<div class="col-md-12" id="outputDiv">
<p id="cvc-output_header" style="text-align:center;padding:0px 0px 10px 0px;font-size:15px"></p>
<div id="sort-buttons1" style="text-align:center;visibility:hidden">
<span id="sort1" style="text-align:center;margin-right:15px">Sort Low-to-High by:</span>
<button id="policyLow" style="text-align:center;margin-right:15px"><span style="color:#000000">Policy/Process Total</span></button>
<button id="rulesLow" style="text-align:center;margin-right:15px"><span style="color:#1565c0">Rules Total</span></button>
<button id="testsLow" style="text-align:center;margin-right:15px"><span style="color:#bf2026ff">Tests Total</span></button>
<button id="totalLow" style="text-align:center;margin-right:15px"><span style="color:#7466BF">Controls & Tests Total</span></button>
<button id="alphaLow" style="text-align:center;margin-right:15px"><span>Identifier</span></button>
</div>
<div id="sort-buttons2" style="text-align:center;padding:15px;visibility:hidden">
<span id="sort2" style="text-align:center;margin-right:15px">Sort High-to-Low by:</span>
<button id="policyHigh" style="text-align:center;margin-right:15px"><span style="color:#000000">Policy/Process Total</span></button>
<button id="rulesHigh" style="text-align:center;margin-right:15px"><span style="color:#1565c0">Rules Total</span></button>
<button id="testsHigh" style="text-align:center;margin-right:15px"><span style="color:#bf2026ff">Tests Total</span></button>
<button id="totalHigh" style="text-align:center;margin-right:15px"><span style="color:#7466BF">Controls & Tests Total</span></button>
<button id="alphaHigh" style="text-align:center;margin-right:15px"><span>Identifier</span></button>
</div>
<div id="policyDiv">
<p style="width:33.33%;float:left" id="cvc-output_policy"></p>
<p style="width:33.33%;float:left" id="cvc-output_blue"></p>
<p style="width:33.33%;float:right" id="cvc-output_red"></p>
</div>
</div>
</div>
<footer style="font-size:13px;text-align:center">
<p>
MITRE ATT&CK® is a registered trademark of The MITRE Corporation, and MITRE D3FEND is a trademark of The MITRE Corporation.<br>
View the raw data (<a target="_blank" href="https://github.com/ControlCompass/ControlCompass.github.io/blob/main/Control_Validation_Compass.csv">csv</a>, <a target="_blank" href="https://github.com/ControlCompass/ControlCompass.github.io/blob/main/cvc.json">json</a>) and <a target="_blank" href="https://github.com/ControlCompass/ControlCompass.github.io">site source code</a><br>
</p>
</footer>
<script async defer src="https://buttons.github.io/buttons.js"></script>
</body>
</html>
<script type="text/javascript" src="src/check_uncheckAll.js"></script>
<script defer type="text/javascript" src="src/controls/controls.js"></script>