So I made something…
The other day my son was sick and I was making a presentation and I was trying to rank the Mitre Att&ck ICS TTPs corresponding to specific Threat Actors and I didn’t really find the Mitre layering tool all that simple and intuitive. I’m sorry Mitre, love ya’ll, but it’s kind of pain.
Anyway, I vibe coded this webpage that has all of the Mitre APTs and their TTPS in an array inside the html. It allows you to select any APTs and their TTPs will light up and combine into a heatmap when multiple APTs are added. There’s also a tab just ranking them. The TTPs all link back to Mitre’s site and there are even tabs for software, detections and mitigations as well. It has both Enterprise and ICS frameworks and if you have an ultrawide monitor, you can even display them both side by side. It does pull some fonts from Google to make it more tron themed, but it also can work entirely offline as a single html file, it will just look a little worse. It will get out of date since it’s entirely static, I versioned it based off the date. So this version has information up to March 18th, 2026.
Also allows you to export a csv of the selected TTPs, detections, and mitigations as well all with links to their Mitre counterpart.
I call it Flynn’s Readme. I have it linked here and its on Github here.
Future stuff might just be tweaks to fonts, non mitre apts, maybe some Tenable pids or other functionality.