From 4ef0f542b8789c14d35c60c3baeee48540c81033 Mon Sep 17 00:00:00 2001 From: Mike Salvatore Date: Fri, 1 Oct 2021 08:24:47 -0400 Subject: [PATCH] Docs: Add description of Attack Mitigations --- docs/content/development/attack_mitigations.md | 18 +++++++++++------- 1 file changed, 11 insertions(+), 7 deletions(-) diff --git a/docs/content/development/attack_mitigations.md b/docs/content/development/attack_mitigations.md index 88a585c97..bce2dc873 100644 --- a/docs/content/development/attack_mitigations.md +++ b/docs/content/development/attack_mitigations.md @@ -11,23 +11,27 @@ Check out [the documentation for the MITRE ATT&CK techniques as well]({{< ref "/ ## Summary -Infection Monkey is shipped with pre-processed information about MITRE ATT&CK -mitigations located at -`monkey/monkey_island/cc/setup/mongo/attack_mitigations.json`. +Attack Mitigations are presented in MITRE ATT&CK report. They appear next to +descriptions of attack techniques and suggest steps that can be taken to reduce +the risk of that particular technique being successful in a network. They also +provide links for further reading on https://attack.mitre.org/ -This may need to be periodically updated as the MITRE ATT&CK framework evolves. +The Infection Monkey is shipped with pre-processed information about MITRE +ATT&CK mitigations located at +`monkey/monkey_island/cc/setup/mongo/attack_mitigations.json`. This may need to +be periodically updated as the MITRE ATT&CK framework evolves. ## Updating the MITRE ATT&CK mitigations data 1. Clone the [MITRE Cyber Threat Intelligence Repository](https://github.com/mitre/cti) or the [Guardicore - fork](https://github.com/guardicore/cti) + fork](https://github.com/guardicore/cti): ``` $ CTI_REPO=$PWD/cti $ git clone $CTI_REPO ``` -2. Start a mongodb v4.2 server -3. Run the script to generate the `attack_mitigations.json` file +2. Start a MongoDB v4.2 server. +3. Run the script to generate the `attack_mitigations.json` file: ``` $ cd monkey/deployment_scripts/dump_attack_mitigations $ pip install -r requirements.txt