title: Vector Catalog to MITRE ATT&CK Mapping
metadata:
  id: VECTOR-MITRE-MAP-001
  version: "1.0.0"
  type: MappingDocument
  gemara-version: "0.20.0"
  description: Maps Vector Catalog vectors to MITRE ATT&CK techniques
  author:
    id: security-team
    name: Security Team
    type: Human
  mapping-references:
    - id: EXAMPLE-VECTOR-CATALOG
      title: Example Attack Vector Catalog
      version: "1.0.0"
    - id: MITRE-ATTACK
      title: MITRE ATT&CK Framework
      version: "v16.1"
      url: "https://attack.mitre.org/"

source-reference:
  reference-id: EXAMPLE-VECTOR-CATALOG
target-reference:
  reference-id: MITRE-ATTACK
remarks: Maps containerized system attack vectors to corresponding MITRE ATT&CK techniques

mappings:
  - id: VEC001-T1190
    source:
      entry-id: VEC-001
      entry-type: Vector
    target:
      entry-id: T1190
      entry-type: Vector
    relationship: relates-to
    rationale: >-
      Container image vulnerabilities can be 
      exploited through public-facing applications

  - id: VEC002-T1611
    source:
      entry-id: VEC-002
      entry-type: Vector
    target:
      entry-id: T1611
      entry-type: Vector
    relationship: equivalent
    rationale: >- 
      Container escape directly maps to MITRE ATT&CK 
      technique T1611: Escape to Host