Lessons from Applying MITRE ATT&CK in the Wild

Lessons from Applying MITRE ATT&CK in the Wild

RSA Conference via YouTube Direct link

Detection Focus

3 of 38

3 of 38

Detection Focus

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Lessons from Applying MITRE ATT&CK in the Wild

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Introduction
  2. 2 Take stock
  3. 3 Detection Focus
  4. 4 High Fidelity Alerts
  5. 5 Uncontrolled Environment
  6. 6 Big Data
  7. 7 Detections vs Alerts
  8. 8 Detects vs Alerts
  9. 9 What will drive Intel
  10. 10 Partnership with MITRE
  11. 11 How to use ATTCK
  12. 12 Jerry Springer moment
  13. 13 Dont treat it as a sacred document
  14. 14 Break PowerShell up
  15. 15 Roadmap
  16. 16 ATTCK as a Communications Tool
  17. 17 How are you instrumented for MITRE
  18. 18 Do you have anything to add
  19. 19 How are you integrating
  20. 20 What should vendors be doing
  21. 21 Dark Block June
  22. 22 Advice for Vendors
  23. 23 Manual vs Automated
  24. 24 Using Attack as a Resource
  25. 25 Admitting Your First Step
  26. 26 Transparency
  27. 27 Testdriven development
  28. 28 Enel test
  29. 29 Creating regression
  30. 30 Testing analytics
  31. 31 Using attribution
  32. 32 Attribution
  33. 33 Impact
  34. 34 Measuring Impact
  35. 35 Educational Tool
  36. 36 Following the right people
  37. 37 Free tools
  38. 38 Analytics

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.