According to attack.mitre.org, “MITRE ATT&CK® is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, in government, and in the cybersecurity product and service community.”
The MITRE ATT&CK is a massive collection of information organized into several topical groups, including tactics, techniques, mitigations, groups, software, and resources. There is material on pre-attack information gathering as well as exploitation techniques for enterprise and mobile targets. This data set helps to inventory, identify, and define the tactics, techniques, and procedures (TTPs) used by APTs and other malicious entities. This database of adversarial techniques is a tool for understanding how attacks work to design, build, and implement better defenses.
Leave a Reply