Releases: mitre-attack/attack-navigator
Releases · mitre-attack/attack-navigator
attack-navigator v5.1.0
See the changelog for details about what changed in this release.
attack-navigator v5.0.1
See the changelog for details about what changed in this release.
attack-navigator v5.0.0
See the changelog for details about what changed in this release.
attack-navigator v4.9.5
See the changelog for details about what changed in this release.
attack-navigator v4.9.4
4.9.4 - 29 February 2024
Fixes
- Fixed a bug with selecting techniques by data sources in the search & multi-select interface. See issue #622.
attack-navigator v4.9.3
4.9.3 - 27 February 2024
Fixes
- Fixed a bug with loading Navigator layers on ATT&CK v10 or earlier. See issue #620.
attack-navigator v4.9.2
4.9.2 - 26 February 2024
Fixes
- Fixed an issue with loading multiple bundles into a single matrix. See issue #505.
- Fixed an issue where the outdated layer dialog box would not load the latest layer file format specification. See issue #617.
- Fixed an issue in the ATT&CK version comparison which caused deprecated techniques to appear in the "review additions" section of the Layer Upgrade UI. See issue #618.
attack-navigator v4.9.1
4.9.1 - 14 November 2023
Adds support for ATT&CK v14.1.
Fixes
- Fixed an issue with the Dockerfile which was preventing the docker image from building. See issue #598.
attack-navigator v4.9.0
4.9.0 - 31 October 2023
Adds support for ATT&CK v14.0.
New Features
- Consolidated the JSON, Excel, and SVG export options into a single dropdown. Added an option to the export interface to only download annotations on visible techniques. See issue #215.
- Extended search interface to support searching for techniques by asset.
- Added the ability to configure how sub-techniques are displayed in the layer file through the
expandedSubtechniquesproperty - annotated, all, or none. See issue #560 and theLayer File Format Changessection. - Added functionality to download all open layers in JSON or MS Excel format. Also added the ability to upload a file with multiple layers. See issue #128.
- Added a new toolbar option to enable or disable the sticky toolbar.
Improvements
- Added ability to render SVG export in dark mode. See issue #556.
- Added the ability to configure whether or not to display the metadata underline either by editing
src/assets/config.jsonor through the "Create Customized Navigator" interface. See issue #400. - Added functionality to scroll across the open tabs in the navigator. See issue #581.
- Improved the matrix print view. See issue #508.
- Added preventative measures for reverse tabnabbing. See issue #527.
- Improved the layer version mismatch warning. For a major version change, the latest layer format and the changelog are linked. For a minor version change, warning message disappears in 6 seconds and links to the changlog. See issue #260.
- Added functionality to scroll down with the Tactics header frozen to the top. See issue #404.
- Improved the Dockerfile for faster builds. See issue #411.
Fixes
- Fixed an issue where certain layer settings were not restored when upgrading the layer ATT&CK version. See issue #597.
Miscellaneous
- Refactored the codebase to improve maintainability of the application.
Layer File Format Changes
Layer file format updated to version 4.5. See layers/LAYERFORMATv4_5.md for the full specification.
- Added support for selecting only visible techniques. The
selectVisibleTechniquesfield specifies whether or not hidden techniques will be included in the different select behaviors. - Added support for configuring how sub-techniques are displayed in the layer with the
expandedSubtechniquesfield. This property can be set toall,annotated, ornoneto expand all sub-techniques, expand only annotated sub-techniques, or collapse all sub-techniques, respectively. - Added support for a list of layers. Users can now upload a layer file that contains multiple layers.
attack-navigator v4.8.2
4.8.2 - 9 May 2023
Adds support for ATT&CK v13.1.
Miscellaneous
- Refactored the codebase to improve maintainability of the application.