This guide explains how to use the attack MITRE ATT&CK Matrix in reports using a query string-like syntax.
Basic Structure
The token uses URL-style parameters separated by & characters. For example:
{AttackChain_Matrix?scenario=<scenario>&setting.show_all_techniques=true&setting.severity_source=finding}This will be replace by the MITRE ATT&CK matrix.
By default, if no scenario is specified, it will pull the data from the 1st scenario available on the Project.
Configuration Sections
1. Required parameters
There are no required parameters.
2. Optional parameters
If set to false, all the techniques that are not linked to a step/finding, will be hidden from the matrix.
show_all_techniques=true/false
If set to "finding", the matrix cells will be coloured according to the Severity of the linked Finding.
If set to "step", the matrix cells will be coloured according to the Severity of the linked Attack Step.
severity_source=step/finding