Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

MITRE ATT&CK

How to Use: MITRE ATT&CK Detection Maturity Assessment Tool

Jan 17, 2024 By Kroll In Kroll
Bharath Kashyap helped create a lightweight, programmatic approach to performing a maturity assessment using free MITRE tools (like ATT&CK framework, D3FEND, and MITRE Centre for Threat Informed Defense (CTID)) to provide a starting point for you to understand your organization’s coverage against the framework, identify areas for improvement and prioritize them for implementation. In this video, Bharath walks through a few ways to make the assessment tool work for your organization.
View Video
CrowdStrike

CrowdStrike Participates in Center for Threat-Informed Defense OceanLotus Project, the First Public Adversary Emulation Plan Combining macOS and Linux

Dec 29, 2023 By Brad Moon In CrowdStrike

The MITRE ATT&CK framework, a key resource for helping organizations defend against cyberattacks, is critical to advancing cybersecurity research. The MITRE Engenuity Center for Threat-Informed Defense’s public library of adversary-specific emulation plans has become a valuable component of the ATT&CK framework. Each plan in the library provides comprehensive ATT&CK tactics and techniques employed by well-known adversaries.

Read Post

Devo Exchange - MITRE ATT&CK content packs & alerts

Dec 13, 2023 By Devo In Devo
With the ever-increasing need for strong threat detection and management activities, more and more organizations are incorporating the MITRE ATT&CK framework into their incident investigation systems. Devo Exchange provides a plethora of MITRE content, and replicates the MITRE ATTA&K Matrix and its comprehensive list of tactics and techniques.
View Video
kroll

Free Template: MITRE ATT&CK Detection Maturity Assessment & Guide

Nov 20, 2023 By Kroll In Kroll

The threat landscape has evolved rapidly in recent years due to major changes in the way organizations operate and adopt new technologies. Cloud services such as Software-as-a-Service (SaaS) and Infrastructure-as-a-Service (IaaS) have seen massive growth over the last decade. With accelerated digital transformation, increased remote working and cloud adoption, the attack surface has increased for most organizations.

Read Post
tripwire

A Simplified Overview of the MITRE ATT&CK Framework

Nov 13, 2023 By Dilki Rathnayake In Tripwire

In the world of cybersecurity, have you ever wondered about the inner workings of threat actors as they attempt to breach systems, their methods, tactics, and strategies, and how they seamlessly converge to execute a successful attack? It's not merely about initiating an attack but also the strategies they utilize to remain concealed within the system, allowing them to persistently operate and ultimately achieve their goals.

Read Post
senseon

How to Defeat MITRE ATT&CK Reconnaissance Techniques

Nov 10, 2023 By Laura In SenseOn

MITRE ATT&CK Reconnaissance (TA0043) techniques section maps out how threat actors gather information about potential targets. Like other ATT&CK tactics (like initial access and lateral movement), reconnaissance provides useful threat intelligence on adversary tactics, techniques, and procedures (TTPs). It is a realistic approximation of what will happen if you become a target.

Read Post
sumologic

How does your AWS environment stand up to the MITRE ATT&CK framework?

Nov 7, 2023 By Tyler Diderich In Sumo Logic
In today’s digital age, adopting public cloud platforms like Amazon Web Services (AWS) security means reinforcing them. AWS is a complex and versatile platform. When problems or security incidents arise, it's important to have a systematic approach to investigation and analysis or it can quickly become noisy with lots of false positives. This is where the Adversarial Tactics, Techniques, and Common Knowledge (MITRE ATT&CK) framework can help.
Read Post
sumologic

Enhance your cloud security with MITRE ATT&CK and Sumo Logic Cloud SIEM

Nov 2, 2023 By Alec Kostiner In Sumo Logic
As cloud applications and services gain prominence amongst organizations, adversaries are evolving their toolset to target these cloud networks. The surge in remote work and teleconferencing presents unprecedented opportunities for nefarious activities. Enter the MITRE ATT&CK Framework, also known as a MITRE ATT&CK Matrix—a treasure trove for defending cloud infrastructure and on-premises infrastructure against the newest adversary tactics, techniques, and procedures (TTPs).
Read Post

CrowdStrike MITRE Engenuity ATT&CK Evaluations Round 5

Oct 31, 2023 By CrowdStrike In CrowdStrike
The CrowdStrike Falcon platform achieved 100% protection, 100% visibility and 100% analytic detection across all steps in the MITRE Engenuity ATT&CK Evaluations: Enterprise. During the evaluation, the CrowdStrike platform shut down advanced attacks by leveraging innovative capabilities including memory scanning, machine learning, industry-leading XDR, identity protection, and sandboxing, all delivered through a unified cloud-native platform.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.