Department of Computer Science & Software Engineering
The University of Western Australia
Last modified: 16 July 2021
Modified By: Michael Wise
We are seeking a MITRE TTP visualisation / web portal that:
Content for the databases is already created. Functionally, after a client case is set up, the user needs to be able to select MITRE artefacts (shown on a version of the MITRE 'periodic table'), plus output to list of TTP. The user should then be able to pivot to the corresponding list of mitigations (again the content is already created), and generate a list. Ideally, outputs will be put to HTML or Word.
The dev team will need front end skills to build the UI (features including IAM including MFA) and backend skills include database build allowing for role-based and group-based access. We would like to platform built such that it can be enhanced and developed going forward. We require functioning portal, code and sound documentation at the end of the project.
The project is a great opportunity to build a tool that will be immediately put to use, draw on UI, database, data matching, entity extraction and security skills. It will also expose students to an important security resource in the MITRE framework.
Content can be found here: https://attack.mitre.org/matrices/enterprise/
Students are to be aware that aspects of the project will be covered by an NDA to protect Slipstream's client confidentiality. Slipstream will retain the IP for the project, however we would be delighted for the students to present their work to others at conclusion (with any sensitive information removed). Slipstream has a number of developers on staff, and the project is an opportunity to explore developers opportunities within a security company.
A confidentiality agreement will need to be signed.
| Department of Computer Science & Software Engineering The University of Western Australia Last modified: 16 July 2021 Modified By: Michael Wise |
|