MITRE ATT&CK Framework
This framework is a knowledge base of common tactics, techniques, and procedures (TTP) that your organization can access to develop specific threat models and methodologies against cyberattacks.
Overview
MITRE is a non-profit corporation based in the United States, Bedford, Massachusetts. It supports numerous US government agencies and manages many federally funded research and development centers (also known as FFRDCs).
The MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) framework documents and tracks various adversarial techniques that are used during different stages of a cyberattack.
By using the MITRE-ATT&CK framework's knowledge base, the cyberthreat intelligence community can quickly identify threats and coordinate cyberattack responses.
Example Attack Profile
Explanation of Mitre Att&ck Steps
S.No | Steps in MITRE ATT&CK | Explanation |
1 | Reconnaissance | The adversary is trying to gather information they can use to plan future operations. |
2 | Resource Development | The adversary is trying to establish resources they can use to support operations. |
3 | Initial Access | The adversary is trying to get into your network. |
4 | Execution | The adversary is trying to run malicious code. |
5 | Persistence | The adversary is trying to maintain their foothold. |
6 | Privilege Escalation | The adversary is trying to gain higher-level permissions. |
7 | Defense Evasion | The adversary is trying to avoid being detected. |
8 | Credential Access | The adversary is trying to steal account names and passwords. |
9 | Discovery | The adversary is trying to figure out your environment. |
10 | Lateral Movement | The adversary is trying to move through your environment. |
11 | Collection | The adversary is trying to gather data of interest to their goal. |
12 | Command and Control | The adversary is trying to communicate with compromised systems to control them. |
13 | Exfiltration | The adversary is trying to steal data. |
14 | Impact | The adversary is trying to manipulate, interrupt, or destroy your systems and data. |
Reference
Mitre Att&ck Official Site Link
YouTube Link
ATT&CK Navigator Link
Explanation of Mitre Att&ck Link
Last updated