I just completed Rangefore Lab: Mitre Att&ck Overview and this is a snippet of what I learnt.
🛑The Mitre Att&ck Framework exposes the attack process of an Adversary.
This framework is very similar in nature to the cyber kill chain. It is more detailed and focuses on mapping out known tactics and techniques adopted by an adversary/Black hat/ Enemy. However, Cyber Kill Chain which focuses primarily on the goal of the attacker.
🔴Tactics: Goal of the attacker at each stage. It addresses “why” each activity is carried out.
🔴Techniques: Refers the activities carried out by the adversary to achieve their goal. Eg. At Initial Access stage, Additional Hardware can be introduced into victim’s network.
🔴Model: It is Behavioural in nature
🔴Attack is carried out in 14 stages namely: Reconnaissance. Resource Development, Initial Access, Execution, Persistence, Privilege Escalation, Defense Evasion, Credential Access Discovery, Lateral Movement, Collection, Command and Control, Exfiltration, Impact
⏳️Starting point: Reconnaissance (Information Gathering Stage).
⌛️End point: Impact: The motive behind the attack determines the Impact. Anything that affects the CIA triad eg. Denial of Service.
🎯 Use Cases for the Framework
▪️Can be used for threat Intelligence.
▪️Can be used to Identify threats based on behaviour.
▪️Can be used by organisations to assess their defence.
▪️Can be used by Penetration testers to answer the question; have we tried everything?
You can check the Mitre Att&ck website for more information.
#selfdevelopment #cybersecurity #mitreAtt&ck #infosec
Employer Brand Manager | ALLSTARSIT
3moThank you for AMAZING insights! 🌟🌟🌟 Looking forward to seeing you at our next events! ☺️☺️