From the course: CompTIA Security+ (SY0-601) Cert Prep: 9 Operations and Incident Response
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
MITRE ATT&CK
From the course: CompTIA Security+ (SY0-601) Cert Prep: 9 Operations and Incident Response
MITRE ATT&CK
- [Instructor] External frameworks help us better understand the threat environment that we face. One of these frameworks that's widely used is MITRE's ATT&CK Framework. The MITRE Corporation is a nonprofit think tank that performs research and development in a variety of public-private partnerships. Cybersecurity is one of their focus areas. And MITRE's been instrumental in advancing the state of the art for our field for decades. One of their research efforts is the development of the Adversarial Tactics, Techniques & Common Knowledge or ATT&CK Framework. This ATT&CK Framework is a collection of knowledge about attackers gathered from real-world organizations over many years. Let's take a look at the contents of the framework. The most recognizable artifact of the framework is this table of attack techniques. Each column in the table represents a tactic of an attacker, the general strategies that they're trying to pursue.…