Most common MITRE ATT&CK tactics and techniques: CISA shares most common RVAs
CISA has released a list of Risk and Vulnerability Assessments, or RVAs, to the MITRE ATT&CK Framework and have released their findings to the public...
MITRE ATT&CK™
Using MITRE ATT&CK with cyber threat intelligence
MITRE ATT&CK® is a framework. It’s designed as a store of knowledge about the possible ways that cyber attackers might create a plan or execute that...
MITRE ATT&CK Framework Mitigations: An overview
MITRE ATT&CK® is a framework. It’s designed as a store of knowledge about the possible ways that cyber attackers might create a plan or execute that...
MITRE ATT&CK Framework Techniques, Sub-Techniques & Procedures: An overview
MITRE ATT&CK® is a framework. It’s designed as a store of knowledge about the possible ways that cyber attackers might create a plan or execute that...
MITRE Shield: An active defense and adversary engagement knowledge base
When it comes to collecting tips, tricks and workarounds, it is easy to see quickly that certain concepts and methods are strong against particular setups,...
7 Steps of the MITRE ATT&CK®-based Analytics Development Method
The MITRE ATT&CK-based analytics development method is a process of using red and blue team engagements to develop and improve the analytics used to detect...
How to Use MITRE ATT&CK® to Map Defenses and Understand Gaps
The MITRE ATT&CK® framework is a useful way to standardize cybersecurity terminology and provides a framework for organizations to plan and evaluate...
Using MITRE ATT&CK®-based analytics for threat detection: 5 principles
A number of traditional methods for threat detection exist; however, cyber threat actors have developed methods for evading these, such as:
Tool Testing:...
Use Cases for Implementing the MITRE ATT&CK® Framework
The MITRE ATT&CK ® framework is a vast repository of cybersecurity knowledge. Each of the MITRE ATT&CK framework outlines a number of goals that...
How to Use the MITRE ATT&CK® Framework and the Lockheed Martin Cyber Kill Chain Together
The Lockheed Martin Cyber Kill Chain is the first attempt to describe the structure and lifecycle of a cyberattack. It breaks a cyberattack into seven discrete...