MITRE ATT&CK & CISA CVE Mapping (06/22/2025)
Over the weekend, I had plans to map MITRE ATT&CK to CISA CVEs, NIST 800-53, Azure and M365. I knew the task was going to be challenging.
I knocked out the mapping for CISA and MITRE within a few hours but am currently stuck on 800-53 with a few minor details to conquer.
I have a connection established with CISA's CVE JSON and recently figured out the complexity of using MITRE ATT&CK's TAXII API to gather the data I need from both to map them together.
But how do I map them together?
This lead me to another JSON from The Center of Threat-Informed Defense Mappings Explorer.
Their JSON allows me to map them together easily.
NIST 800-53 mapping and write up is next on my list and then I plan on Azure and M365 maybe next weekend.
BCWHS.com
