EN, Search Security Resources and Information from TechTarget

What is the Mitre ATT&CK framework?

<p>The Mitre ATT&amp;CK framework is a free, globally accessible <a href=”https://www.techtarget.com/whatis/definition/knowledge-base”>knowledge base</a> that describes the latest behaviors and tactics of cyberadversaries to help organizations strengthen their <a href=”https://www.techtarget.com/searchsecurity/definition/cybersecurity”>cybersecurity</a> strategies. The acronym <i>ATT&amp;CK</i> stands for Adversarial Tactics, Techniques and Common Knowledge. That’s the basis for the Mitre ATT&amp;CK — pronounced <i>miter attack</i> — framework and its accompanying ATT&amp;CK knowledge base.</p>
<div class=”ad-wrapper ad-embedded”>
<div id=”halfpage” class=”ad ad-hp”>
<script>GPT.display(‘halfpage’)</script>
</div>
<div id=”mu-1″ class=”ad ad-mu”>
<script>GPT.display(‘mu-1’)</script>
</div>
</div>
<p>The framework is used across multiple fields and disciplines, including intrusion detection systems, <a href=”https://www.techtarget.com/searchsecurity/tip/What-is-threat-hunting-Key-strategies-explained”>threat hunting</a>, <a href=”https://www.techtarget.com/whatis/definition/red-teaming”>red teaming</a>, security engineering, <a href=”https://www.techtarget.com/whatis/definition/threat-intelligence-cyber-threat-intelligence”>threat intelligence</a> and <a href=”https://www.techtarget.com/searchsecurity/definition/What-is-risk-management-and-why-is-it-important”>risk management</a>.</p>
<p>Organizations can use the framework to evaluate and test their security methods and to vet cybersecurity vendor products and services. Security vendors use Mitre ATT&amp;CK to ensure their offerings make defending against and responding to security events faster and more effective.</p>
<section class=”section main-article-chapter” data-menu-title=”Components of the Mitre ATT&amp;CK framework”>
<h2 class=”section-title”><i class=”icon” data-icon=”1″></i>Components of the Mitre ATT&amp;CK framework</h2>
<p>Mitre Corp., a not-for-profit security research organization, created and continues to curate the ATT&amp;CK framework and cyberthreat intelligence knowledge base. The knowledge base contains analyses based on real-world events that organizations can reference when developing <a href=”https://ww

[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.

This article has been indexed from Search Security Resources and Information from TechTarget

Read the original article: