Skip to main content
GET
/
api
/
mitre
/
matrix
cURL
curl --request GET \
  --url https://app.cotool.ai/api/mitre/matrix \
  --header 'Authorization: Bearer <token>'
{
  "matrix": {
    "tactics": [
      {
        "tacticId": "<string>",
        "tacticName": "<string>",
        "description": "<string>",
        "shortName": "<string>",
        "techniqueIds": [
          "<string>"
        ],
        "url": "<string>",
        "detectionCount": 123,
        "averageConfidence": 0.5,
        "rawData": {
          "id": "<string>",
          "type": "x-mitre-tactic",
          "name": "<string>",
          "description": "<string>",
          "external_references": [
            {
              "source_name": "<string>",
              "external_id": "<string>",
              "url": "<string>",
              "description": "<string>"
            }
          ],
          "x_mitre_shortname": "<string>",
          "x_mitre_version": "<string>",
          "x_mitre_attack_spec_version": "<string>",
          "x_mitre_domains": [
            "<string>"
          ],
          "created": "<string>",
          "modified": "<string>",
          "spec_version": "<string>",
          "object_marking_refs": [
            "<string>"
          ]
        }
      }
    ],
    "techniques": [
      {
        "techniqueId": "<string>",
        "techniqueName": "<string>",
        "description": "<string>",
        "tactics": [
          "<string>"
        ],
        "isSubtechnique": true,
        "parentTechnique": "<string>",
        "platforms": [
          "<string>"
        ],
        "dataSources": [
          "<string>"
        ],
        "mitigations": [
          "<string>"
        ],
        "url": "<string>",
        "detectionCount": 123,
        "confidence": 0.5,
        "detectionRules": [
          {
            "id": "<string>",
            "name": "<string>",
            "source": "panther",
            "confidence": 0.5,
            "reasoning": "<string>"
          }
        ],
        "rawData": {
          "id": "<string>",
          "type": "attack-pattern",
          "name": "<string>",
          "description": "<string>",
          "external_references": [
            {
              "source_name": "<string>",
              "external_id": "<string>",
              "url": "<string>",
              "description": "<string>"
            }
          ],
          "kill_chain_phases": [
            {
              "kill_chain_name": "<string>",
              "phase_name": "<string>"
            }
          ],
          "x_mitre_version": "<string>",
          "x_mitre_attack_spec_version": "<string>",
          "x_mitre_domains": [
            "<string>"
          ],
          "x_mitre_is_subtechnique": true,
          "x_mitre_detection": "<string>",
          "x_mitre_platforms": [
            "<string>"
          ],
          "x_mitre_data_sources": [
            "<string>"
          ],
          "aliases": [
            "<string>"
          ],
          "created": "<string>",
          "modified": "<string>",
          "spec_version": "<string>",
          "object_marking_refs": [
            "<string>"
          ],
          "revoked": true,
          "x_mitre_deprecated": true
        }
      }
    ],
    "matrixCells": [
      {
        "techniqueId": "<string>",
        "techniqueName": "<string>",
        "tacticId": "<string>",
        "tacticName": "<string>",
        "detectionCount": 123,
        "confidence": 0.5,
        "coverageLevel": "none"
      }
    ],
    "lastUpdated": "<string>",
    "totalDetectionRules": 123,
    "organizationId": "<string>"
  }
}

Authorizations

​
Authorization
string
header
required

API Key authentication for programmatic access. Include your API key in the Authorization header as: Bearer your_api_key_here

Response

200 - application/json

Successful response

​
matrix
object
required

Complete MITRE ATT&CK matrix with detection coverage