STIX data representing MITRE ATT&CK (by mitre-attack)

Attack-stix-data Alternatives

Similar projects and alternatives to attack-stix-data

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better attack-stix-data alternative or higher similarity.

attack-stix-data discussion

Log in or Post with

attack-stix-data reviews and mentions

Posts with mentions or reviews of attack-stix-data. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-12-07.
  • Gaps in SOC Operator and Analyst Skillsets
    1 project | | 20 May 2024
    For SOC analysts, even those with experience in corporate SOCs, the gaps can be just as significant. Many analysts lack the ability to write effective correlation rules and have a limited understanding of attack vectors or the MITRE ATT&CK framework. Their experience might be limited to basic, off-the-shelf content, without the depth required to investigate real incidents thoroughly.
  • Mitre ATT&CK: knowledge base of adversary tactics and techniques
    1 project | | 21 Dec 2023
  • Mitre attack framework
    1 project | /r/cissp | 10 Dec 2023
    It mentions it but doesn't dig into the minutiae. If you want to learn about it, visit
  • PT and VA, how to do it practically?
    1 project | /r/HowToHack | 7 Dec 2023
    Start here:
  • "The Case for Memory Safe Roadmaps" CIA, FBI & Global Cyber Security agencies pan C/C++
    2 projects | /r/cpp | 7 Dec 2023
    We do have a good idea about what sort of attacks are common. There is a whole framework for how ATP's operate and there are lists of which attack methods they currently prefer to use.
  • CTF Challenges: Reconnaissance
    1 project | | 12 Sep 2023
    At first, I had a difficult time understanding the problem. It had too many acronyms that I wasn't familiar with, so I decided to click on the hint:
  • Ask HN: Transitioning from game development to cybersecurity. Tips or advice?
    1 project | | 20 Aug 2023
    Some thoughts from someone who has been in the security biz for a while:

    1. Security is more a mindset than anything else. Get used to finding the edge cases. Think "how can I break this..." or "how can I get around this restriction..." Many security folks I know started actually by exactly what you mentioned- figuring out how to bypass copy protection on games, how to bypass client-side checks in multi-player games, ... and so on.

    2. Many pure security folks are very poor developers. You'll have a unique skillset here if you can apply it. Most security oriented folks use Python for quick scripts. If you already know python, great; otherwise, learn it and use that as a marketable skill.

    3. I'm not sure about jumping head first into a consultancy. I'd recommend getting some experience in a security field first. It's hard to have credibility without some experience first.

    4. Don't bother with security+. If you want creds, go and take your favorite cloud provider's security specialist exam. Cloud security is still relatively new, in high demand, and can get you immediate credibility with employers or clients.

    5. I'm a big fan of real-world experience. Set up your own Linux server and try to attack it. Learn what some of the real world attacker techniques are. See some of the following:

    Learn the Techniques, Tactics, and Procedures (TTPs) outlined in the MITRE ATT&CK matrix (

    There are a LOT of "Capture the Flag" (CTF) events and writeups out there. Search for ones in a subfield you find interesting. Security is a HUGE topic. You'll need to specialize. Do you want to reverse engineer code? Secure cloud applications? Help companies define their identity and access management strategy? There's a CTF for all of those and then some. Do some googling around.

    I have a lot more tips, so if you're interested just reply to this comment with a way I can get in touch and I'll reach out.

  • Frage an die IT Affinen: Welche Sicherheitssoftware (Virenschutz und Co) ist für PC und Android zu empfehlen?
    1 project | /r/Austria | 30 Jun 2023
  • List of Every Cyber Attack
    1 project | | 27 Jun 2023
  • Datto edr
    1 project | /r/msp | 12 Jun 2023
  • A note from our sponsor - SaaSHub | 16 Jun 2024
    SaaSHub helps you find the best software and product alternatives Learn more →


Basic attack-stix-data repo stats
about 2 months ago

Free Django app performance insights with Scout Monitoring
Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in is all you need to start monitoring your apps. Sign up for our free tier today.