What is MITTRE ATT&CK?
MITREATT&CK, short for Adversarial Tactics, Techniques, and Common Knowledge, is a widely recognized and continually evolving knowledge base, which meticulously documents real-world cyber threat tactics and techniques, enabling organizations to comprehend adversary behaviours comprehensively. ATT&CK empowers security teams to assess their defences, identify vulnerabilities, and proactively develop measures to detect, prevent, and respond to cyber threats.
How MITTRE ATT&CK works?
By mapping adversary techniques to defensive strategies, ATT&CK facilitates the creation of effective security postures, fosters threat intelligence sharing, and promotes collaboration among cyber security professionals. It serves as a valuable resource for understanding and countering the ever-changing landscape of cyber attacks.
MITREATT&CK catalogues 14 primary adversary tactics employed in cyber threats:
- Initial Access Execution
- Persistence
- Privilege Escalation
- Defense Evasion
- Credential Access
- Discovery
- Lateral Movement
- Collection
- Exfiltration
- Command and Control
- Impact
- Impact on Business
By categorizing these tactics and describing associated techniques, ATT&CK provides organizations with a comprehensive framework to assess their security posture, identify weaknesses, and develop effective defensive measures.
