npm - @threatcaptain/tc-reports - Versions diffs - 0.2.15 → 0.2.16 - Mend

@threatcaptain/tc-reports 0.2.15 → 0.2.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/index.cjs CHANGED Viewed

@@ -51154,8 +51154,8 @@ var RadarChart = generateCategoricalChart({
 });
 const ATTACK_STEPS = [
   {
-    id: "get-in",
-    name: "Step 1: Get In",
+    stepId: "get-in",
+    stepName: "Step 1: Get In",
     description: "Initial access and reconnaissance phase",
     tactics: [
       "Reconnaissance",
@@ -51167,24 +51167,24 @@ const ATTACK_STEPS = [
     // red
   },
   {
-    id: "sneak-around",
-    name: "Step 2: Sneak Around",
+    stepId: "sneak-around",
+    stepName: "Step 2: Sneak Around",
     description: "Discovery and movement within the network",
     tactics: ["Discovery", "Lateral Movement", "Defense Evasion"],
     color: "#f59e0b"
     // amber
   },
   {
-    id: "take-control",
-    name: "Step 3: Take Control",
+    stepId: "take-control",
+    stepName: "Step 3: Take Control",
     description: "Establishing persistence and escalating privileges",
     tactics: ["Privilege Escalation", "Persistence", "Credential Access"],
     color: "#8b5cf6"
     // violet
   },
   {
-    id: "stay-hidden",
-    name: "Step 4: Stay Hidden",
+    stepId: "stay-hidden",
+    stepName: "Step 4: Stay Hidden",
     description: "Maintaining access and achieving objectives",
     tactics: ["Command and Control", "Collection", "Exfiltration", "Impact"],
     color: "#06b6d4"
@@ -51360,47 +51360,501 @@ const MitreAttack = ({ breachData, overallLikelihood }) => {
     ] })
   ] });
 };
-const groupTitles = {
-  basic: "Basic Controls (Implementation Group 1)",
-  foundational: "Foundational Controls (Implementation Group 2)",
-  organizational: "Organizational Controls (Implementation Group 3)"
-};
-const groupDescriptions = {
-  basic: "Must-have cybersecurity hygiene controls that should be implemented by all organizations (Controls 1-6).",
-  foundational: "Deeper technical safeguards for organizations with moderate cybersecurity programs (Controls 7-16).",
-  organizational: "Governance and process controls for mature organizations with dedicated security teams (Controls 17-18)."
-};
-const controlLevels = {
-  basic: [1, 2, 3, 4, 5, 6],
-  // IG1 - Basic hygiene controls
-  foundational: [7, 8, 9, 10, 11, 12, 13, 14, 15, 16],
-  // IG2 - Deeper technical safeguards
-  organizational: [17, 18]
-  // IG3 - Governance and process controls
-};
-const serviceDescriptions = {
-  1: "Maintain an up-to-date, automated inventory of all hardware assets across the client environment, with real-time discovery and change tracking.",
-  2: "Discover and track all installed software, enforce approved application lists, and remove or remediate unauthorized or outdated software.",
-  3: "Implement and manage data encryption, DLP policies, and secure backup processes to safeguard sensitive information in transit and at rest.",
-  4: "Deploy, enforce, and audit standardized hardening baselines for operating systems and applications to eliminate insecure default settings.",
-  5: "Provision, modify, and decommission user and service accounts, enforce password policies, and regularly review privileges.",
-  6: "Configure and maintain least-privilege access, multi-factor authentication, and role-based permissions across systems and applications.",
-  7: "Perform scheduled vulnerability scans, prioritize detected issues, and coordinate patching or mitigation workflows.",
-  8: "Collect, centralize, and analyze system and security logs from endpoints, servers, and network devices for threat detection and compliance.",
-  9: "Deploy and manage email filtering, anti-phishing measures, and web-content filtering to block malicious messages and sites.",
-  10: "Install, configure, and monitor endpoint anti-malware/EDR solutions to detect, quarantine, and remediate malicious code.",
-  11: "Design, implement, and test backup and restore procedures to ensure rapid recovery from data loss or ransomware events.",
-  12: "Monitor, configure, and maintain routers, switches, and firewalls for performance, availability, and secure configurations.",
-  13: "Deploy IDS/IPS or NDR solutions, continuously monitor network traffic for anomalies, and respond to potential intrusions.",
-  14: "Provide ongoing phishing simulations, interactive training modules, and compliance reporting to educate end users.",
-  15: "Assess, onboard, and continuously monitor the security posture of third-party vendors and partners.",
-  16: "Conduct automated and manual code scans, secure code reviews, and application hardening to identify and fix vulnerabilities.",
-  17: "Develop, test, and execute incident response playbooks, coordinate investigations, and manage post-incident reporting.",
-  18: "Perform periodic internal and external penetration tests, simulate real-world attacks, and deliver detailed remediation guidance."
+const CIS_MITRE_MAPPING = {
+  1: {
+    controlName: "Inventory & Control of Enterprise Assets",
+    mitrePhases: [
+      "Reconnaissance",
+      "Initial Access",
+      "Defense Evasion",
+      "Discovery"
+    ],
+    impactReduction: 15,
+    // 15% reduction in breach cost
+    implementationCost: 25e3,
+    description: "Asset visibility prevents unknown attack vectors and reconnaissance"
+  },
+  2: {
+    controlName: "Inventory & Control of Software Assets",
+    mitrePhases: ["Initial Access", "Execution", "Persistence", "Discovery"],
+    impactReduction: 18,
+    implementationCost: 3e4,
+    description: "Software control blocks malicious applications"
+  },
+  3: {
+    controlName: "Data Protection",
+    mitrePhases: ["Collection", "Exfiltration"],
+    impactReduction: 35,
+    implementationCost: 5e4,
+    description: "Encryption dramatically reduces data breach impact"
+  },
+  4: {
+    controlName: "Secure Configuration of Enterprise Assets & Software",
+    mitrePhases: ["Initial Access", "Privilege Escalation", "Defense Evasion"],
+    impactReduction: 22,
+    implementationCost: 4e4,
+    description: "Hardening prevents exploitation of misconfigurations"
+  },
+  5: {
+    controlName: "Account Management",
+    mitrePhases: [
+      "Initial Access",
+      "Privilege Escalation",
+      "Persistence",
+      "Credential Access"
+    ],
+    impactReduction: 28,
+    implementationCost: 35e3,
+    description: "Proper account controls limit attacker access"
+  },
+  6: {
+    controlName: "Access Control Management",
+    mitrePhases: [
+      "Initial Access",
+      "Privilege Escalation",
+      "Lateral Movement",
+      "Credential Access"
+    ],
+    impactReduction: 30,
+    implementationCost: 45e3,
+    description: "MFA and access controls significantly reduce breach success"
+  },
+  7: {
+    controlName: "Continuous Vulnerability Management",
+    mitrePhases: [
+      "Resource Development",
+      "Initial Access",
+      "Privilege Escalation",
+      "Defense Evasion",
+      "Discovery"
+    ],
+    impactReduction: 25,
+    implementationCost: 6e4,
+    description: "Patching closes known attack vectors and limits resource development"
+  },
+  8: {
+    controlName: "Audit Log Management",
+    mitrePhases: ["Defense Evasion", "Collection", "Discovery"],
+    impactReduction: 20,
+    implementationCost: 55e3,
+    description: "Logging enables faster detection and response"
+  },
+  9: {
+    controlName: "Email & Web Browser Protections",
+    mitrePhases: [
+      "Resource Development",
+      "Initial Access",
+      "Command and Control"
+    ],
+    impactReduction: 32,
+    implementationCost: 25e3,
+    description: "Blocks most common attack vectors and resource development"
+  },
+  10: {
+    controlName: "Malware Defenses",
+    mitrePhases: ["Initial Access", "Execution", "Defense Evasion"],
+    impactReduction: 28,
+    implementationCost: 4e4,
+    description: "EDR prevents malware execution and lateral movement"
+  },
+  11: {
+    controlName: "Data Recovery",
+    mitrePhases: ["Impact"],
+    impactReduction: 45,
+    implementationCost: 35e3,
+    description: "Backups dramatically reduce ransomware impact"
+  },
+  12: {
+    controlName: "Network Infrastructure Management",
+    mitrePhases: [
+      "Initial Access",
+      "Lateral Movement",
+      "Command and Control",
+      "Discovery"
+    ],
+    impactReduction: 18,
+    implementationCost: 5e4,
+    description: "Network segmentation limits breach scope"
+  },
+  13: {
+    controlName: "Network Monitoring & Defense",
+    mitrePhases: [
+      "Reconnaissance",
+      "Initial Access",
+      "Lateral Movement",
+      "Command and Control",
+      "Exfiltration",
+      "Discovery"
+    ],
+    impactReduction: 25,
+    implementationCost: 7e4,
+    description: "Network detection identifies threats early including reconnaissance"
+  },
+  14: {
+    controlName: "Security Awareness & Skills Training",
+    mitrePhases: ["Initial Access", "Credential Access"],
+    impactReduction: 40,
+    implementationCost: 15e3,
+    description: "Training prevents human error attacks"
+  },
+  15: {
+    controlName: "Service Provider Management",
+    mitrePhases: ["Resource Development", "Initial Access"],
+    impactReduction: 12,
+    implementationCost: 2e4,
+    description: "Third-party risk management reduces supply chain attacks"
+  },
+  16: {
+    controlName: "Application Software Security",
+    mitrePhases: ["Initial Access", "Execution"],
+    impactReduction: 20,
+    implementationCost: 8e4,
+    description: "Secure coding prevents application-based attacks"
+  },
+  17: {
+    controlName: "Incident Response Management",
+    mitrePhases: ["Impact"],
+    impactReduction: 30,
+    implementationCost: 45e3,
+    description: "Faster response reduces breach duration and cost"
+  },
+  18: {
+    controlName: "Penetration Testing",
+    mitrePhases: ["Reconnaissance", "Discovery"],
+    impactReduction: 15,
+    implementationCost: 25e3,
+    description: "Testing identifies vulnerabilities before attackers through controlled reconnaissance"
+  }
+};
+const MITRE_DESCRIPTIONS = {
+  "Reconnaissance": "Gathering information to plan future adversary operations, that can be conducted against the target of interest.",
+  "Resource Development": "Establishing resources they can use to support operations during their campaign targeting an organization.",
+  "Initial Access": "Trying to get into your network through various entry points like spear phishing emails or exploiting public applications.",
+  "Execution": "Running malicious code on local or remote systems to achieve their objectives.",
+  "Persistence": "Maintaining their foothold in your systems by surviving reboots, changed credentials, and other interruptions.",
+  "Privilege Escalation": "Gaining higher-level permissions to access more resources and sensitive information.",
+  "Defense Evasion": "Avoiding detection by disabling security tools, obfuscating content, or hiding artifacts.",
+  "Credential Access": "Stealing account names and passwords to gain access to systems and data.",
+  "Discovery": "Learning about your environment and internal network to understand what they control and benefits their goals.",
+  "Lateral Movement": "Moving through your environment to reach their objective, often accessing remote systems.",
+  "Collection": "Gathering information and files that are of interest to their goal and objectives.",
+  "Command and Control": "Communicating with compromised systems to control them and exfiltrate data.",
+  "Exfiltration": "Stealing data from your network, often over their command and control channel.",
+  "Impact": "Manipulating, interrupting, or destroying your systems and data to achieve their goals."
+};
+const SelectedTacticDetails = ({
+  selectedTactic,
+  breachData,
+  onClose
+}) => {
+  const selectedPhase = breachData.mitrePhases.find(
+    (p2) => p2.phase === selectedTactic
+  );
+  if (!selectedPhase) return null;
+  const getRiskLevelColor2 = (riskLevel) => {
+    switch (riskLevel) {
+      case "low":
+        return "#10b981";
+      case "medium":
+        return "#f59e0b";
+      case "high":
+        return "#ef4444";
+      default:
+        return "#6b7280";
+    }
+  };
+  const relevantCISControls = Object.entries(CIS_MITRE_MAPPING).filter(([_, mapping]) => mapping.mitrePhases.includes(selectedTactic)).map(([controlNumber, mapping]) => {
+    const controlNum = parseInt(controlNumber);
+    const controlMapping = breachData.controlMappings.find(
+      (c2) => c2.controlNumber === controlNum
+    );
+    return {
+      controlNumber: controlNum,
+      controlName: mapping.controlName,
+      implemented: (controlMapping == null ? void 0 : controlMapping.implemented) || false,
+      description: mapping.description
+    };
+  }).sort((a2, b) => a2.controlNumber - b.controlNumber);
+  return /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "mt-4 p-4 bg-white rounded-lg border relative", children: [
+    /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "flex justify-between items-start mb-3", children: [
+      /* @__PURE__ */ jsxRuntime.jsx("h5", { className: "font-semibold text-gray-900", children: selectedPhase.phase }),
+      /* @__PURE__ */ jsxRuntime.jsx(
+        Button$1,
+        {
+          variant: "ghost",
+          size: "sm",
+          onClick: onClose,
+          className: "h-6 w-6 p-0 hover:bg-gray-100",
+          children: /* @__PURE__ */ jsxRuntime.jsx(lucideReact.X, { className: "h-4 w-4" })
+        }
+      )
+    ] }),
+    /* @__PURE__ */ jsxRuntime.jsx("div", { className: "mb-4", children: /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-sm text-gray-700", children: MITRE_DESCRIPTIONS[selectedPhase.phase] || "No description available for this tactic." }) }),
+    /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "grid grid-cols-1 md:grid-cols-3 gap-4 text-sm mb-4", children: [
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        /* @__PURE__ */ jsxRuntime.jsx("span", { className: "text-gray-600", children: "Coverage:" }),
+        /* @__PURE__ */ jsxRuntime.jsxs("span", { className: "ml-2 font-medium", children: [
+          selectedPhase.coverage,
+          "%"
+        ] })
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        /* @__PURE__ */ jsxRuntime.jsx("span", { className: "text-gray-600", children: "Risk Level:" }),
+        /* @__PURE__ */ jsxRuntime.jsx(
+          "span",
+          {
+            className: "ml-2 font-medium",
+            style: { color: getRiskLevelColor2(selectedPhase.riskLevel) },
+            children: selectedPhase.riskLevel.charAt(0).toUpperCase() + selectedPhase.riskLevel.slice(1)
+          }
+        )
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { children: [
+        /* @__PURE__ */ jsxRuntime.jsx("span", { className: "text-gray-600", children: "Protection Status:" }),
+        /* @__PURE__ */ jsxRuntime.jsx("span", { className: "ml-2 font-medium", children: selectedPhase.coverage >= 80 ? "Well Protected" : selectedPhase.coverage >= 50 ? "Partially Protected" : "Vulnerable" })
+      ] })
+    ] }),
+    /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "border-t pt-4", children: [
+      /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "flex items-center space-x-2 mb-3", children: [
+        /* @__PURE__ */ jsxRuntime.jsx(lucideReact.Shield, { className: "h-4 w-4 text-blue-600" }),
+        /* @__PURE__ */ jsxRuntime.jsx("h6", { className: "font-medium text-gray-900", children: "CIS Controls That Improve This Tactic" })
+      ] }),
+      relevantCISControls.length > 0 ? /* @__PURE__ */ jsxRuntime.jsx("div", { className: "space-y-2", children: relevantCISControls.map((control) => /* @__PURE__ */ jsxRuntime.jsxs(
+        "div",
+        {
+          className: `p-3 rounded-lg border ${control.implemented ? "bg-green-50 border-green-200" : "bg-orange-50 border-orange-200"}`,
+          children: [
+            /* @__PURE__ */ jsxRuntime.jsx("div", { className: "flex items-start justify-between mb-1", children: /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "flex items-center space-x-2", children: [
+              /* @__PURE__ */ jsxRuntime.jsxs("span", { className: "font-medium text-sm", children: [
+                "CIS Control ",
+                control.controlNumber
+              ] }),
+              /* @__PURE__ */ jsxRuntime.jsx(
+                Badge,
+                {
+                  variant: control.implemented ? "default" : "secondary",
+                  className: control.implemented ? "bg-green-100 text-green-800 border-green-200" : "bg-orange-100 text-orange-800 border-orange-200",
+                  children: control.implemented ? "Implemented" : "Not Implemented"
+                }
+              )
+            ] }) }),
+            /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-sm font-medium text-gray-800 mb-1", children: control.controlName }),
+            /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-xs text-gray-600", children: control.description })
+          ]
+        },
+        control.controlNumber
+      )) }) : /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-sm text-gray-500 italic", children: "No CIS controls are mapped to this MITRE tactic." }),
+      relevantCISControls.length > 0 && /* @__PURE__ */ jsxRuntime.jsx("div", { className: "mt-3 p-2 bg-blue-50 rounded border border-blue-200", children: /* @__PURE__ */ jsxRuntime.jsxs("p", { className: "text-xs text-blue-700", children: [
+        /* @__PURE__ */ jsxRuntime.jsx("strong", { children: "Coverage Calculation:" }),
+        " This tactic's",
+        " ",
+        selectedPhase.coverage,
+        "% coverage is based on",
+        " ",
+        relevantCISControls.filter((c2) => c2.implemented).length,
+        " of",
+        " ",
+        relevantCISControls.length,
+        " relevant CIS controls being implemented."
+      ] }) })
+    ] })
+  ] });
+};
+const MITRETacticsOverview = ({
+  breachData,
+  selectedTactic,
+  setSelectedTactic,
+  onTacticClick
+}) => {
+  var _a;
+  const [selectedStep, setSelectedStep] = React.useState(null);
+  const getRiskLevelColor2 = (riskLevel) => {
+    switch (riskLevel) {
+      case "low":
+        return "#10b981";
+      case "medium":
+        return "#f59e0b";
+      case "high":
+        return "#ef4444";
+      default:
+        return "#6b7280";
+    }
+  };
+  const handleClosePopup = () => {
+    setSelectedTactic(null);
+  };
+  return /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "bg-gray-50 p-4 rounded-lg", children: [
+    /* @__PURE__ */ jsxRuntime.jsx("h4", { className: "font-medium text-sm mb-3", children: "MITRE ATT&CK Kill Chain Coverage - 4 Attack Steps" }),
+    /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-xs text-gray-500 mb-4", children: "Click on any step to explore individual tactics" }),
+    /* @__PURE__ */ jsxRuntime.jsx("div", { className: "grid grid-cols-1 md:grid-cols-2 xl:grid-cols-4 gap-4 mb-6", children: ATTACK_STEPS.map((step) => {
+      var _a2;
+      const stepData = (_a2 = breachData.attackSteps) == null ? void 0 : _a2.find(
+        (s2) => s2.stepId === step.stepId
+      );
+      const coverage = (stepData == null ? void 0 : stepData.coverage) || 0;
+      const riskLevel = (stepData == null ? void 0 : stepData.riskLevel) || "medium";
+      return /* @__PURE__ */ jsxRuntime.jsxs(
+        "div",
+        {
+          className: `bg-white p-3 rounded-lg border cursor-pointer transition-all duration-200 ${selectedStep === step.stepId ? "ring-2 ring-blue-300 shadow-md" : "hover:shadow-sm"}`,
+          onClick: () => {
+            setSelectedStep(
+              selectedStep === step.stepId ? null : step.stepId
+            );
+            onTacticClick("");
+          },
+          onKeyDown: (e) => {
+            if (e.key === "Enter" || e.key === " ") {
+              e.preventDefault();
+              setSelectedStep(
+                selectedStep === step.stepId ? null : step.stepId
+              );
+              onTacticClick("");
+            }
+          },
+          role: "button",
+          tabIndex: 0,
+          "aria-label": `${step.stepName}: ${step.description}`,
+          children: [
+            /* @__PURE__ */ jsxRuntime.jsx(
+              "div",
+              {
+                className: "text-sm font-medium mb-1",
+                style: { color: step.color },
+                children: step.stepName
+              }
+            ),
+            /* @__PURE__ */ jsxRuntime.jsx("div", { className: "text-xs text-gray-600 mb-2", children: step.description }),
+            /* @__PURE__ */ jsxRuntime.jsx("div", { className: "w-full h-2 bg-gray-200 rounded-full overflow-hidden mb-1", children: /* @__PURE__ */ jsxRuntime.jsx(
+              "div",
+              {
+                className: "h-full transition-all duration-300",
+                style: {
+                  width: `${coverage}%`,
+                  backgroundColor: step.color
+                }
+              }
+            ) }),
+            /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "flex justify-between text-xs", children: [
+              /* @__PURE__ */ jsxRuntime.jsxs("span", { className: "text-gray-600", children: [
+                coverage,
+                "% Coverage"
+              ] }),
+              /* @__PURE__ */ jsxRuntime.jsxs("span", { style: { color: getRiskLevelColor2(riskLevel) }, children: [
+                riskLevel.charAt(0).toUpperCase() + riskLevel.slice(1),
+                " Risk"
+              ] })
+            ] })
+          ]
+        },
+        step.stepId
+      );
+    }) }),
+    selectedStep && /* @__PURE__ */ jsxRuntime.jsxs(jsxRuntime.Fragment, { children: [
+      /* @__PURE__ */ jsxRuntime.jsxs("h5", { className: "font-medium text-sm mb-3", children: [
+        "Individual Tactics for",
+        " ",
+        (_a = ATTACK_STEPS.find((s2) => s2.stepId === selectedStep)) == null ? void 0 : _a.stepName,
+        " ",
+        "(Click to view details)"
+      ] }),
+      /* @__PURE__ */ jsxRuntime.jsx("div", { className: "grid grid-cols-2 lg:grid-cols-4 gap-2", children: breachData.mitrePhases.filter((phase) => {
+        const step = getTacticStep(phase.phase);
+        return (step == null ? void 0 : step.stepId) === selectedStep;
+      }).sort((a2, b) => {
+        const stepA = getTacticStep(a2.phase);
+        const stepB = getTacticStep(b.phase);
+        const stepOrder = [
+          "get-in",
+          "sneak-around",
+          "take-control",
+          "stay-hidden"
+        ];
+        const indexA = stepA ? stepOrder.indexOf(stepA.stepId) : 999;
+        const indexB = stepB ? stepOrder.indexOf(stepB.stepId) : 999;
+        if (indexA !== indexB) {
+          return indexA - indexB;
+        }
+        return a2.phase.localeCompare(b.phase);
+      }).map((phase) => {
+        const step = getTacticStep(phase.phase);
+        return /* @__PURE__ */ jsxRuntime.jsxs(
+          "div",
+          {
+            className: `text-center cursor-pointer transition-all duration-200 p-2 rounded border ${selectedTactic === phase.phase ? "bg-white shadow-md ring-2 ring-blue-300" : "hover:bg-white hover:shadow-sm"}`,
+            onClick: () => onTacticClick(phase.phase),
+            onKeyDown: (e) => {
+              if (e.key === "Enter" || e.key === " ") {
+                e.preventDefault();
+                onTacticClick(phase.phase);
+              }
+            },
+            role: "button",
+            tabIndex: 0,
+            "aria-label": phase.phase,
+            children: [
+              /* @__PURE__ */ jsxRuntime.jsx(
+                "div",
+                {
+                  className: "text-xs font-medium truncate mb-1",
+                  title: phase.phase,
+                  children: phase.phase
+                }
+              ),
+              step && /* @__PURE__ */ jsxRuntime.jsx(
+                "div",
+                {
+                  className: "text-xs mb-1",
+                  style: { color: step.color },
+                  children: step.stepName.replace("Step ", "")
+                }
+              ),
+              /* @__PURE__ */ jsxRuntime.jsx("div", { className: "w-full h-2 bg-gray-200 rounded-full overflow-hidden", children: /* @__PURE__ */ jsxRuntime.jsx(
+                "div",
+                {
+                  className: "h-full transition-all duration-300",
+                  style: {
+                    width: `${phase.coverage}%`,
+                    backgroundColor: (step == null ? void 0 : step.color) || getRiskLevelColor2(phase.riskLevel)
+                  }
+                }
+              ) }),
+              /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "text-xs text-gray-600 mt-1", children: [
+                phase.coverage,
+                "%"
+              ] }),
+              /* @__PURE__ */ jsxRuntime.jsxs(
+                "div",
+                {
+                  className: "text-xs mt-1",
+                  style: { color: getRiskLevelColor2(phase.riskLevel) },
+                  children: [
+                    phase.riskLevel.charAt(0).toUpperCase() + phase.riskLevel.slice(1),
+                    " ",
+                    "Risk"
+                  ]
+                }
+              )
+            ]
+          },
+          phase.phase
+        );
+      }) })
+    ] }),
+    selectedTactic && /* @__PURE__ */ jsxRuntime.jsx(
+      SelectedTacticDetails,
+      {
+        selectedTactic,
+        breachData,
+        onClose: handleClosePopup
+      }
+    )
+  ] });
 };
 const BreachLikelihood = ({ reportData }) => {
   var _a;
   const { clientData, securityAssessment, breachData } = reportData;
+  const [selectedTactic, setSelectedTactic] = React.useState(null);
   const calculateBreachLikelihood = (protectionLevel) => {
     if ((securityAssessment == null ? void 0 : securityAssessment.overall_breach_likelihood) !== null && (securityAssessment == null ? void 0 : securityAssessment.overall_breach_likelihood) !== void 0) {
       return Math.round(securityAssessment.overall_breach_likelihood);
@@ -51489,23 +51943,15 @@ const BreachLikelihood = ({ reportData }) => {
         /* @__PURE__ */ jsxRuntime.jsx("h2", { className: "text-2xl font-bold text-slate-900 mb-2", children: "Understanding Your Numbers" }),
         /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-slate-600", children: "How We Calculate Your Risk" })
       ] }),
-      /* @__PURE__ */ jsxRuntime.jsx("div", { className: "space-y-6", children: Object.entries(groupTitles).map(([groupKey, title]) => /* @__PURE__ */ jsxRuntime.jsxs(React.Fragment, { children: [
-        /* @__PURE__ */ jsxRuntime.jsx("h2", { className: "text-lg font-semibold mb-2", children: title }),
-        /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-gray-600 mb-4", children: groupDescriptions[groupKey] }),
-        /* @__PURE__ */ jsxRuntime.jsx("div", { className: "space-y-2", children: /* @__PURE__ */ jsxRuntime.jsx("ul", { className: "border border-slate-200 bg-slate-50 rounded-lg py-2 px-4 flex flex-col w-full", children: controlLevels[groupKey].map(
-          (control) => /* @__PURE__ */ jsxRuntime.jsxs(
-            "li",
-            {
-              className: "py-2 flex items-center w-full",
-              children: [
-                /* @__PURE__ */ jsxRuntime.jsx("span", { className: "max-h-6 max-w-6 w-full text-sm flex items-center justify-center rounded-full border bg-blue-100 border-blue-900 text-blue-900 font-bold mr-4", children: control }),
-                /* @__PURE__ */ jsxRuntime.jsx("span", { className: "flex leading-tight", children: serviceDescriptions[control] })
-              ]
-            },
-            control
-          )
-        ) }) })
-      ] }, groupKey)) }),
+      /* @__PURE__ */ jsxRuntime.jsx(
+        MITRETacticsOverview,
+        {
+          breachData,
+          selectedTactic,
+          setSelectedTactic,
+          onTacticClick: setSelectedTactic
+        }
+      ),
       /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "bg-slate-50 rounded-lg p-6 mb-6", children: [
         /* @__PURE__ */ jsxRuntime.jsx("h3", { className: "text-xl font-bold mb-4", children: "Our Approach" }),
         /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-sm text-slate-700", children: "We use the same data sources that insurance companies and security professionals rely on. Our calculations are conservative - real attack costs are often higher than our estimates." })
@@ -52409,7 +52855,7 @@ const InsuranceHealthScore = ({ reportData }) => {
           className: `rounded-lg p-6 text-white text-center ${scoreCategoryData.bgColor}`,
           children: [
             /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "flex items-center justify-center space-x-2 mb-2", children: [
-              /* @__PURE__ */ jsxRuntime.jsx("div", { className: "w-8 h-8 rounded-full bg-white/20 flex items-center justify-center", children: /* @__PURE__ */ jsxRuntime.jsx("span", { className: "text-lg font-bold", children: score }) }),
+              /* @__PURE__ */ jsxRuntime.jsx("div", { className: "w-12 h-12 p-2 rounded-full bg-white/20 flex items-center justify-center", children: /* @__PURE__ */ jsxRuntime.jsx("span", { className: "text-lg font-bold", children: score }) }),
               /* @__PURE__ */ jsxRuntime.jsx("h3", { className: "text-2xl font-bold", children: "INSURANCE HEALTH SCORE" })
             ] }),
             /* @__PURE__ */ jsxRuntime.jsx("p", { className: "text-4xl font-bold", children: `${score}/850` }),
@@ -52470,33 +52916,36 @@ const InsuranceHealthScore = ({ reportData }) => {
                 insuranceHealthData.responses
               );
               return domains.map((domain, index2) => {
-                let statusPill = "";
                 let statusClass = "";
                 const percentage = domain.percentage || 0;
                 if (percentage === 0) {
-                  statusPill = "FAIL";
-                  statusClass = "bg-red-500 text-white";
+                  statusClass = "bg-red-500";
                 } else if (percentage === 100) {
-                  statusPill = "PASS";
-                  statusClass = "bg-green-500 text-white";
+                  statusClass = "bg-green-500";
                 } else {
-                  statusPill = "NEEDS IMPROVEMENT";
-                  statusClass = "bg-yellow-600 text-white";
+                  statusClass = "bg-yellow-600";
                 }
-                return /* @__PURE__ */ jsxRuntime.jsx(
+                return /* @__PURE__ */ jsxRuntime.jsxs(
                   "div",
                   {
                     className: "bg-white border border-slate-200 rounded-lg p-4",
-                    children: /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "flex justify-between items-center", children: [
-                      /* @__PURE__ */ jsxRuntime.jsx("h5", { className: "font-medium text-slate-900 text-sm", children: domain.name }),
-                      /* @__PURE__ */ jsxRuntime.jsx("div", { className: "text-right", children: /* @__PURE__ */ jsxRuntime.jsx(
-                        "span",
+                    children: [
+                      /* @__PURE__ */ jsxRuntime.jsxs("div", { className: "flex justify-between mb-1 text-sm", children: [
+                        /* @__PURE__ */ jsxRuntime.jsx("h5", { className: "font-medium text-slate-900", children: domain.name }),
+                        /* @__PURE__ */ jsxRuntime.jsxs("p", { className: "text-xs text-gray-400", children: [
+                          domain.score,
+                          "/",
+                          domain.maxScore
+                        ] })
+                      ] }),
+                      /* @__PURE__ */ jsxRuntime.jsx("div", { className: "w-full bg-gray-200 rounded-full h-3", children: /* @__PURE__ */ jsxRuntime.jsx(
+                        "div",
                         {
-                          className: `inline-block px-3 py-1 rounded-full text-xs font-semibold uppercase tracking-wider ${statusClass}`,
-                          children: statusPill
+                          className: `h-4 rounded-full transition-all duration-500 ${statusClass}`,
+                          style: { width: percentage + "%" }
                         }
                       ) })
-                    ] })
+                    ]
                   },
                   index2
                 );