Dive into a comprehensive retrospective of the MITRE Engenuity ATT&CK® Evaluations for Industrial Control Systems (ICS) in this 1-hour 5-minute video. Explore the results of a simulated 5-day attack analyzing 5 industrial cybersecurity vendors' OT threat behavior detection efficacy. Gain insights into the technical breakdown of the attack, adversary threat behaviors, and a step-by-step assessment walkthrough. Learn how adversaries are tracked through the MITRE ATT&CK for ICS framework and understand the evaluation process, including safety systems, MITRE vs. ICS comparisons, and the MITRE Attack Matrix. Examine daily analyses and detections, focusing on Burner Management Systems and Control Safety. Conclude with an overview of the MITRE Evaluation Results and Quality of Detection, followed by a Q&A session.
MITRE ATT&CK Evaluations for Industrial Control Systems - Dragos Retrospective
Dragos: ICS Cybersecurity via YouTube
Overview
Syllabus
Introduction
Evaluation Results
Safety Systems
What is MITRE
MITRE vs ICS
MITRE Attack
MITRE Matrix
Testing
Three Steps
Trisys
Burner Management Systems
Control Safety
Day 1 Evaluation
Day 1 Analysis
Day 2 Analysis
Day 2 Detection
Day 3 Detection
Day 3 Analysis
Day 4 Analysis
Day 5 Analysis
MITRE Evaluation Results
Quality of Detection
Questions
Taught by
Dragos: ICS Cybersecurity
Related Courses
-
Application of the MITRE ATT&CK Framework
-
MITRE ATT&CK for ICS: Improving Threat Detection and Response in Industrial Control Systems
-
Developing a Converged IT/OT Threat Model Using MITRE ATT&CK
-
Improving ICS and OT Visibility - Dragos Platform v1.6 Overview
-
MITRE ATT&CK for Industrial Control Systems - Demonstration and Analysis
-
Conceptos de OT para Blue Teamers - Santiago Abastante & Matias Manassero - Ekoparty 2021: BlueSpace
