May 11, 2024
4 minute read
The MITRE ATT&CK Framework is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, government, and the cybersecurity research community.
What is the MITRE ATT&CK Framework?
The MITRE ATT&CK Framework is a structured way to describe the tactics, techniques, and procedures (TTPs) that adversaries use to attack computer systems. It is based on real-world observations of how adversaries operate, and it is constantly updated with new information about the latest threats. The framework is organized into 11 different categories, each of which represents a different stage in the attack lifecycle.
The ATT&CK Framework is a valuable tool for security professionals because it provides a common language for discussing and analyzing threats. It can be used to develop threat models, create detection and response plans, and train security analysts. The framework is also used by researchers to develop new security technologies.
Why Learn About the MITRE ATT&CK Framework?
There are many reasons why you might want to learn about the MITRE ATT&CK Framework. Here are a few of the most common reasons:
k2wn28|
Find a path to becoming a MITRE ATT&CK Framework. Learn more at:
OpenCourser.com/topic/k2wn28/mitre
Reading list
We've selected six books
that we think will supplement your
learning. Use these to
develop background knowledge, enrich your coursework, and gain a
deeper understanding of the topics covered in
MITRE ATT&CK Framework.
Provides a comprehensive overview of the MITRE ATT&CK framework, explaining its structure, components, and how it is used to improve cybersecurity defenses. Marc Rogers has over 20 years of experience in the cybersecurity industry and recognized expert on threat intelligence and incident response.
Provides a practical guide to using MITRE ATT&CK to defend against cyber threats. It covers topics such as detecting and responding to attacks, using threat intelligence, and developing a comprehensive cybersecurity strategy.
This classic text on military strategy has been updated and adapted to the modern era of cyber warfare. It provides insights into the nature of cyber conflict and how to develop effective strategies for defending against cyber attacks.
Provides a comprehensive overview of the security challenges facing cloud computing. It covers topics such as cloud security architecture, cloud security controls, and cloud security best practices.
Provides a comprehensive overview of cybersecurity for beginners. It covers topics such as cybersecurity basics, cybersecurity risks, and cybersecurity best practices.
Provides a comprehensive overview of the Certified Information Security Manager (CISM) exam. It covers topics such as information security management, information security governance, and information security risk management.
For more information about how these books relate to this course, visit:
OpenCourser.com/topic/k2wn28/mitre
Save
