Explore the Mitre ATT&CK Framework and its significance in modern cybersecurity through this informative LASCON conference talk. Gain valuable insights into how this framework can help security practitioners understand and counter adversarial tactics and techniques. Learn to apply ATT&CK to existing and new systems, map technologies and procedures, identify gaps in defenses, and improve overall security posture. Discover how the framework benefits various roles in cybersecurity, from generalists to specialists, and how it surpasses traditional compliance-based approaches by focusing on actual hacker tactics. Delve into the ATT&CK matrix, its practical applications, and how it can be used to measure and address security gaps. Understand the framework's importance in detecting, responding to, and preventing attacks across different environments, including web applications and internal networks.
The MITRE ATT&CK Framework: Understanding and Applying Adversarial Tactics - 2018
Overview
Syllabus
Introduction
Homework
What do we care about
Identify your gaps
The place to start
What is it
Tactics
Matrix
Map
Three Cs
Log in
Tech ID
House Bill
OPSEC
Windows Attack Logging
PowerShell
Log in the Output
Attack Navigator
Un unfettered
Mitre API
Recommendations
Conclusion
What are the bad guys actually doing
The fastest way to hunt
Questions
NIST
Taught by
LASCON
Related Courses
-
Application of the MITRE ATT&CK Framework
-
MITRE ATT&CK Defender™ (MAD) ATT&CK® Fundamentals Badge Training
-
MITRE ATT&CK Defender™ (MAD) ATT&CK® Cyber Threat Intelligence Certification Training
-
MITRE ATT&CK Defender™ ATT&CK® Threat Hunting
-
Mapping APT TTPs with MITRE ATT&CK Navigator
-
Real-World Implications of the MITRE ATT&CK Framework for IT and OT Environments
