{"framework":"owasp-web-2021","framework_label":"OWASP Web","controls":[{"control_id":"A01:2021","title":"Broken Access Control","family":"A","techniques":[{"id":"T1078","name":"Valid Accounts","detectable":true,"detections":"Sigma, CAR, IDS"},{"id":"T1190","name":"Exploit Public-Facing Application","detectable":true,"detections":"Sigma, IDS, Falco"},{"id":"T1212","name":"Exploitation for Credential Access","detectable":true,"detections":"Sigma"}],"technique_count":3,"detectable_count":3,"coverage_pct":100,"has_mapping":true,"is_enhancement":false},{"control_id":"A02:2021","title":"Cryptographic Failures","family":"A","techniques":[{"id":"T1552","name":"Unsecured Credentials","detectable":true,"detections":"Sigma, CAR, IDS, YARA, Falco"},{"id":"T1555","name":"Credentials from Password Stores","detectable":true,"detections":"Sigma, Falco"}],"technique_count":2,"detectable_count":2,"coverage_pct":100,"has_mapping":true,"is_enhancement":false},{"control_id":"A03:2021","title":"Injection","family":"A","techniques":[{"id":"T1059","name":"Command and Scripting Interpreter","detectable":true,"detections":"Sigma, CAR, IDS, Falco"},{"id":"T1190","name":"Exploit Public-Facing Application","detectable":true,"detections":"Sigma, IDS, Falco"}],"technique_count":2,"detectable_count":2,"coverage_pct":100,"has_mapping":true,"is_enhancement":false},{"control_id":"A04:2021","title":"Insecure Design","family":"A","techniques":null,"technique_count":0,"detectable_count":0,"coverage_pct":0,"has_mapping":false,"is_enhancement":false},{"control_id":"A05:2021","title":"Security Misconfiguration","family":"A","techniques":[{"id":"T1190","name":"Exploit Public-Facing Application","detectable":true,"detections":"Sigma, IDS, Falco"}],"technique_count":1,"detectable_count":1,"coverage_pct":100,"has_mapping":true,"is_enhancement":false},{"control_id":"A06:2021","title":"Vulnerable and Outdated Components","family":"A","techniques":[{"id":"T1190","name":"Exploit Public-Facing Application","detectable":true,"detections":"Sigma, IDS, Falco"}],"technique_count":1,"detectable_count":1,"coverage_pct":100,"has_mapping":true,"is_enhancement":false},{"control_id":"A07:2021","title":"Identification and Authentication Failures","family":"A","techniques":[{"id":"T1078","name":"Valid Accounts","detectable":true,"detections":"Sigma, CAR, IDS"},{"id":"T1110","name":"Brute Force","detectable":true,"detections":"Sigma"},{"id":"T1556","name":"Modify Authentication Process","detectable":true,"detections":"Sigma, Falco"}],"technique_count":3,"detectable_count":3,"coverage_pct":100,"has_mapping":true,"is_enhancement":false},{"control_id":"A08:2021","title":"Software and Data Integrity Failures","family":"A","techniques":[{"id":"T1190","name":"Exploit Public-Facing Application","detectable":true,"detections":"Sigma, IDS, Falco"},{"id":"T1195","name":"Supply Chain Compromise","detectable":true,"detections":"Sigma"}],"technique_count":2,"detectable_count":2,"coverage_pct":100,"has_mapping":true,"is_enhancement":false},{"control_id":"A09:2021","title":"Security Logging and Monitoring Failures","family":"A","techniques":[{"id":"T1070","name":"Indicator Removal","detectable":true,"detections":"Sigma, CAR, Falco"},{"id":"T1562.002","name":"Disable Windows Event Logging","detectable":true,"detections":"CAR"}],"technique_count":2,"detectable_count":2,"coverage_pct":100,"has_mapping":true,"is_enhancement":false},{"control_id":"A10:2021","title":"Server-Side Request Forgery (SSRF)","family":"A","techniques":[{"id":"T1190","name":"Exploit Public-Facing Application","detectable":true,"detections":"Sigma, IDS, Falco"}],"technique_count":1,"detectable_count":1,"coverage_pct":100,"has_mapping":true,"is_enhancement":false}],"families":[{"family":"A","controls":10,"controls_with_mapping":9,"distinct_techniques":11,"detectable_techniques":11,"coverage_pct":100}],"total_controls":10,"controls_with_mapping":9,"distinct_techniques":11,"detectable_techniques":11,"overall_coverage_pct":100,"unmapped_enhancements":0,"no_mappings_at_all":false}