Binder Open_Threat_Research Community Open Source Love svg1 Downloads

A Python module to access up to date ATT&CK content available in STIX via public TAXII server. This project leverages the python classes and functions of the cti-python-stix2 and cti-taxii-client libraries developed by MITRE.


  • Provide an easy way to access and interact with up to date ATT&CK content available in STIX via public TAXII server

  • Allow security analysts to quickly explore ATT&CK content and apply it in their daily operations

  • Allow the integration of ATT&Ck content with other platforms to host up to date information from the framework

  • Help security analysts during the transition from the ATT&CK MediaWiki API to the STIX/TAXII 2.0 API

  • Learn STIX2 and TAXII Client Python libraries

Current Status: Production/Stable#

The project is currently in a Production/Stable stage, which means that the current main functions are more stable. I would love to get your feedback to make it a better project.



Python 3+


You can install it via PIP:

pip install attackcti

Or you can also do the following:

git clone
cd ATTACK-Python-Client
pip install .


Official Committers#