CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence (CTI) analysts create high-quality, actionable reports more consistently and efficiently. CTI analysts face many challenges and constraints, including time and resource constraints, lack of analytic training and guidance, and lack of feedback from CTI consumers on what works. This project seeks to increase the operational relevance of reports through a standardized set of templates that help analysts answer specific analytic questions for common cyber security use cases. This project is created and maintained by the MITRE Engenuity Center for Threat-Informed Defense in futherance of our mission to advance the start of the art and the state of the practice in threat-informed defense globally. The project is funded by our research participants.
Table Of Contents:
To get started, we suggest reading the One Pager for an overview of the project and then read the sample reports. For a deeper dive, read the wiki documentation and review the CTI templates. From there, try creating your own reports using either the Word templates or the Blueprints Suite of tools.
| Resource | Description |
|---|---|
| One Pager | Overview of CTI Blueprints |
| Documentation | Complete documentation for CTI Blueprints |
| Templates & Sample Reports | CTI report templates with inline guidance and sample reports illustrating use of the templates |
| Authoring Tool | Run the authoring tool in your browser |
| Download Tools | Download the authoring and publishing tools to run locally (advanced option) |
There are several ways that you can get involved with this project and help advance threat-informed defense:
- Review the One Pager and sample reports. This will give you a quick overview of the project's goals and help to envision your own capability to use it.
- Read the project wiki. It goes deeper into the project's goals and objectives.
- Create your own reports. Choose one of two approaches for creating reports:
- Build reports with the Word templates, which are user friendly and
Please submit issues for any technical questions/concerns or contact ctid@mitre-engenuity.org directly for more general inquiries.
Also see the guidance for contributors if are you interested in contributing or simply reporting issues.
We welcome your feedback and contributions to help advance CTI Blueprints.
- Provide feedback on the templates and tool on Github, find us on LinkedIn, or reach out to our team directly at ctid@mitre-engenuity.org.
- Help us develop additional plug-ins for the community or provide additional plugin suggestions. A running list of suggested plug-ins can be found on our Github Wiki Developer page.
- Spread the word! Our goal is to increase adoption of CTI Blueprints in the community, and we encourage analysts to integrate it into their production workflow. CTI Blueprints is open-source, so go ahead and share it in your professional network!
Please see the guidance for contributors if are you interested in contributing or simply reporting issues.. Submit issues for any technical questions/concerns or contact ctid@mitre-engenuity.org directly for more general inquiries.
Copyright 2023 MITRE Engenuity. Approved for public release. Document number CT0069.
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.