Hi dogesec team!
We don’t want to install the MITRE TIE models locally. After watching your video about the CTI Butler Inference Engine I have hopes that you might expose it somewhere for us to query… are my hopes misplaced?
Good news…
e.g.
curl -X 'GET' \
'https://api.ctibutler.com/v1/attack-enterprise/tie/?technique_ids=T1548,T1134' \
-H 'accept: application/json' \
-H 'API-KEY: HIDDEN'
{
"scores": {
"T1059": 0.04188984351839456,
"T1071": 0.025939311248977456,
"T1547": 0.023390162648051094,
"T1566": 0.02135747706366101,
"T1560": 0.02067798851483792,
"T1055": 0.020269782930771394,
"T1070": 0.020163301265374512,
"T1003": 0.019667517960210712,
"T1204": 0.019332654306990802,
"T1036": 0.018622914150751915,
"T1021": 0.018602641884972147,
"T1083": 0.018217804418055653,
"T1082": 0.01801983302808315,
"T1053": 0.017106305095277174,
"T1090": 0.016848272178094776,
"T1486": 0.016288624675566632,
"T1057": 0.016080183138027684,
"T1562": 0.015378572765471147,
"T1056": 0.01536085851693883,
"T1574": 0.01478476760861365
},