MITRE ATT&CK was created in 2013 in answer to the research question “How well are we doing at detecting documented adversary behavior?” It is a result of MITRE’s Fort Meade Experiment (FMX) where researchers emulated both adversary and defender behavior to improve post-compromise detection of threats through telemetry sensing and behavioral analysis. <\/p>\n\n\n\n
Understanding the MITRE ATT&CK framework<\/strong><\/span><\/h2>\n\n\n\nThe MITRE ATT&CK (pronounced “miter attack”) framework is a free, globally accessible framework that provides comprehensive and up-to-date cyber threat information to organizations looking to strengthen their cybersecurity strategies.<\/p>\n\n\n\n
Businesses can use the framework\u00a0to evaluate and test their security methods, and cybersecurity vendors can use it to vet their products and services.<\/p>\n\n\n\n
The framework evaluation criteria are specific to each organization using it and focus on the details of a specific cybersecurity approach. The results of the evaluations are, therefore, noncompetitive; organizations cannot use results to gain a business advantage over other organizations that have been evaluated.<\/p>\n\n\n\n
The framework and knowledge base were created and curated by Mitre, a not-for-profit security research organization. The knowledge base is an ongoing project. It contains analyses based on real-world events that organizations can reference when developing threat models and methodologies, and it grows as organizations contribute their knowledge of cyber threats to the knowledge base. The knowledge base, in turn, informs the framework.<\/p>\n\n\n\n
Mitre aims to foster a stronger overall cybersecurity community with these free offerings.<\/p>\n\n\n\n
Breakdown of the MITRE ATT&CK Framework<\/strong><\/span><\/h2>\n\n\n\nSuccessful and\u00a0comprehensive threat detection\u00a0requires understanding common adversary techniques. This includes the ones that may especially pose a threat to your organization, and how to detect and mitigate these attacks. However, the\u00a0volume and breadth of attack tactics\u00a0make it nearly impossible for any single organization to monitor every single attack type. This is without taking into account cataloging and translating those findings in a constructive way to anyone outside of their organization.<\/p>\n\n\n\n
This was why MITRE developed the ATT&CK framework. ATT&CK, which is an acronym for Adversarial Tactics, Techniques, and Common Knowledge, is a knowledge base of adversary tactics and techniques. These techniques are indexed and broken down into detail the exact steps and methods that hackers use, making it easy for teams to understand the actions that may be used against a particular platform. <\/p>\n\n\n\n
To go a step further, MITRE also incorporates\u00a0cyber-threat intelligence\u00a0documenting adversary group behavior profiles to document which attack groups use which techniques.<\/p>\n\n\n\n
The ATT&CK matrix structure is similar to a periodic table, with column headers outlining phases in the attack chain (from Initial Access all the way to Impact). The rows below them detail specific techniques. Framework users can further explore any of the techniques to learn more about the tactics, platforms exploited, example procedures, mitigation, and detections.<\/p>\n\n\n\n
What is in the MITRE ATT&CK Matrix?<\/strong><\/h2>\n\n\n\nThe MITRE ATT&CK matrix contains a set of techniques used by adversaries to accomplish a specific objective. Those objectives are categorized as tactics in the ATT&CK Matrix. <\/p>\n\n\n\n
The objectives are presented linearly from the point of reconnaissance to the final goal of exfiltration or “impact”. Looking at the broadest version of ATT&CK for Enterprise, which includes Windows, macOS, Linux, PRE, Azure AD, Office 365, Google Workspace, SaaS, IaaS, Network, and Containers, the following adversary tactics are categorized:<\/p>\n\n\n\n
\n- Reconnaissance<\/strong>. Gathering information to plan future adversary operations, i.e., information about the target organization<\/li>\n\n\n\n
- Resource Development<\/strong>. Establishing resources to support operations, i.e., setting up command and control infrastructure<\/li>\n\n\n\n
- Initial Access<\/strong>. Trying to get into your network, i.e., spear phishing<\/li>\n\n\n\n
- Execution<\/strong>. Trying the run malicious code, i.e., running a remote access tool<\/li>\n\n\n\n
- Persistence<\/strong>. Trying to maintain their foothold, i.e., changing configurations<\/li>\n\n\n\n
- Privilege Escalation<\/strong>. Trying to gain higher-level permissions, i.e., leveraging a vulnerability to elevate access<\/li>\n\n\n\n
- Defense Evasion<\/strong>. Trying to avoid being detected, i.e., using trusted processes to hide malware<\/li>\n\n\n\n
- Credential Access<\/strong>. Stealing account names and passwords, i.e., keylogging<\/li>\n\n\n\n
- Discovery<\/strong>. Trying to figure out your environment, i.e., exploring what they can control<\/li>\n\n\n\n
- Lateral Movement<\/strong>. Moving through your environment, i.e., using legitimate credentials to pivot through multiple systems<\/li>\n\n\n\n
- Collection<\/strong>. Gathering data of interest to the adversary goal, i.e., accessing data in cloud storage<\/li>\n\n\n\n
- Command and Control<\/strong>. Communicating with compromised systems to control them, i.e., mimicking normal web traffic to communicate with a victim network<\/li>\n\n\n\n
- Exfiltration<\/strong>. Stealing data, i.e., transferring data to a cloud account<\/li>\n\n\n\n
- Impact<\/strong>. Manipulate, interrupt, or destroy systems and data, i.e., encrypting data with ransomware<\/li>\n<\/ul>\n\n\n\n
Within each tactic of the MITRE ATT&CK matrix, there are adversary techniques, which describe the actual activity carried out by the adversary. Some techniques have sub-techniques that explain how an adversary carries out a specific technique in greater detail.<\/p>\n\n\n\n
The full ATT&CK Matrix for Enterprise from the MITRE ATT&CK navigator is represented below:<\/span><\/h5>\n\n\n\n![\"MITRE](\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/image-2-1024x562.png?resize=1024%2C562&ssl=1\")
MITRE ATT&CK for Enterprise, 2021<\/em><\/figcaption><\/figure><\/div>\n\n\nHow to use the MITRE ATT&CK framework matrix<\/strong><\/h2>\n\n\n\nThe MITRE ATT&CK framework can help an organization in several ways. In general, the following are applicable benefits to adopting MITRE ATT&CK:<\/p>\n\n\n\n
\n- Adversary Emulation<\/strong>. Assesses security by applying intelligence about an adversary and how it operates to emulate a threat. ATT&CK can be used to create adversary emulation scenarios to test and verify defenses.<\/li>\n\n\n\n
- Behavioral Analytics Development<\/strong>. Links together suspicious activity to monitor adversary activity. ATT&CK can be used to simplify and organize patterns of suspicious activity deemed malicious.<\/li>\n\n\n\n
- Red Teaming<\/strong>. Acts as an adversary to demonstrate the impact of a breach. ATT&CK can be used to create red team plans and organize operations.<\/li>\n\n\n\n
- Defensive Gap Assessment<\/strong>. Determines what parts of the enterprise lack defenses and\/or visibility. ATT&CK can be used to assess existing tools or test new tools before purchasing, to determine security coverage and prioritize investment.<\/li>\n\n\n\n
- SOC Maturity Assessment<\/strong>. Similar to the Defensive Gap Assessment, ATT&CK can be used to determine how effective a security operations center (SOC) is at detecting, analyzing, and responding to breaches.<\/li>\n\n\n\n
- Cyber Threat Intelligence Enrichment<\/strong>. Enhances information about threats and threat actors. ATT&CK allows defenders to assess whether they are able to defend against specific Advanced Persistent Threats (ATP) and common behaviors across multiple threat actors.<\/li>\n<\/ol>\n\n\n\n
Implementing MITRE ATT&CK typically involves either manual mapping or integration with cybersecurity tools, the most common of which are Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and Cloud Access Security Broker (CASB).<\/p>\n\n\n\n
Use cases of the MITRE ATT&CK framework<\/strong><\/h2>\n\n\n\nTwo broad use cases for the framework are penetration testing (pen testing) and cybersecurity service evaluation. <\/p>\n\n\n\n
In pen testing, organizations\u00a0designate a red team\u00a0— much like MITRE did in its Fort Meade eXperiment (FMX) research project — to simulate behavior and find vulnerabilities.\u00a0Pen testers\u00a0can use MITRE to learn how to accurately simulate behaviors so that they can eventually develop accurate defenses.<\/p>\n\n\n\n
Cybersecurity vendors can also use MITRE’s evaluations to determine the strength of their products and services. The evaluations provide objective insights into the use of specific commercial security products, offer a transparent analysis of a given product’s capabilities, and strengthen the cybersecurity community as a whole by strengthening vendors that develop products responsible for customer security across many industries.<\/p>\n\n\n\n
Other use cases include cybersecurity gap assessments, security operations maturity assessments,\u00a0user and entity behavior analytics, threat detection and threat intelligence.\u00a0MITRE ATT&CK use cases continue to evolve\u00a0and emerge.<\/p>\n\n\n\n
Benefits of the MITRE ATT&CK framework<\/h2>\n\n\n\n
The broad benefits of the framework include the following:<\/p>\n\n\n\n
\n- A more concrete account of adversarial behaviors.<\/li>\n\n\n\n
- An account of not just threat indicators, but threat groups as well. Businesses can use Mitre to not only detect behaviors but also make educated guesses about who is performing them and track behaviors across different attacker groups. Its attack page features group-based info.<\/li>\n\n\n\n
- Widely used and trusted across many industries, with sector-specific threat information.<\/li>\n\n\n\n
- Takes a communal approach to threat reporting that ensures info is up to date and checked by the public, as well as Mitre.<\/li>\n<\/ul>\n\n\n\n
Using the framework, a business can do the following:<\/p>\n\n\n\n
\n- associate attack behavior to different groups;<\/li>\n\n\n\n
- pen test its network;<\/li>\n\n\n\n
- find vulnerabilities in its network and map ATT&CK methodologies to threats;<\/li>\n\n\n\n
- discover\u00a0network misconfigurations;<\/li>\n\n\n\n
- share its cybersecurity knowledge with the broader community; and<\/li>\n\n\n\n
- standardize disparate security tools and techniques to create a more\u00a0cohesive security strategy.<\/li>\n<\/ul>\n\n\n\n
Recommended Articles <\/strong><\/span><\/h2>\n\n\n\n\n- PII In Cybersecurity: What Is It And How Does It Work?<\/a><\/li>\n\n\n\n
- What Is SOAR In Cybersecurity? Definition, Tools & Benefits<\/a><\/li>\n\n\n\n
- Cybersecurity Risk Assessment: What It Is & How To Perform It<\/a><\/li>\n\n\n\n
- What Is Keylogging & How Does It Work?<\/a><\/li>\n\n\n\n
- CIA Triad in Cybersecurity: What Is It & Why Is It Important?<\/a><\/li>\n\n\n\n
- What is Tailgating in Cybersecurity & How to Prevent It<\/a><\/li>\n<\/ul>\n\n\n\n
References<\/strong><\/span><\/h2>\n\n\n\n\n- Trellix<\/a><\/li>\n\n\n\n
- Rapid7<\/a><\/li>\n\n\n\n
- TechTarget<\/a><\/li>\n<\/ul>\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"excerpt":{"rendered":"MITRE ATT&CK\u00ae stands for MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK). The MITRE ATT&CK framework is a…\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"author":290,"featured_media":14758,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[302],"tags":[],"class_list":{"0":"post-14754","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security"},"yoast_head":"\n
MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology<\/title>\n<meta name=\"description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\" \/>\n<meta property=\"og:description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:site_name\" content=\"Business Yield Technology\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/Jay.Arnis\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-21T17:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Jimmy Anisulowo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/forlahjay\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jimmy Anisulowo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"url\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\",\"isPartOf\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"datePublished\":\"2023-11-21T17:00:00+00:00\",\"author\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\"},\"description\":\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\",\"breadcrumb\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"width\":1600,\"height\":900,\"caption\":\"MITRE ATT&CK Framework\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/businessyield.com\/tech\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/businessyield.com\/tech\/#website\",\"url\":\"https:\/\/businessyield.com\/tech\/\",\"name\":\"Business Yield Technology\",\"description\":\"Best Tech Reviews, Apps, Phones, & Gaming\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/businessyield.com\/tech\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\",\"name\":\"Jimmy Anisulowo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"caption\":\"Jimmy Anisulowo\"},\"description\":\"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.\",\"sameAs\":[\"https:\/\/www.facebook.com\/Jay.Arnis\",\"https:\/\/www.instagram.com\/forlahjay\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/forlahjay\"],\"url\":\"https:\/\/businessyield.com\/tech\/author\/jimmy\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_locale":"en_US","og_type":"article","og_title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","og_description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","og_url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_site_name":"Business Yield Technology","article_author":"https:\/\/www.facebook.com\/Jay.Arnis","article_published_time":"2023-11-21T17:00:00+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","type":"image\/webp"}],"author":"Jimmy Anisulowo","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/forlahjay","twitter_misc":{"Written by":"Jimmy Anisulowo","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","name":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","isPartOf":{"@id":"https:\/\/businessyield.com\/tech\/#website"},"primaryImageOfPage":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"image":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","datePublished":"2023-11-21T17:00:00+00:00","author":{"@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff"},"description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","breadcrumb":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage","url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","contentUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","width":1600,"height":900,"caption":"MITRE ATT&CK Framework"},{"@type":"BreadcrumbList","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/businessyield.com\/tech\/"},{"@type":"ListItem","position":2,"name":"MITRE ATT&CK Framework: Everything You Need to Know"}]},{"@type":"WebSite","@id":"https:\/\/businessyield.com\/tech\/#website","url":"https:\/\/businessyield.com\/tech\/","name":"Business Yield Technology","description":"Best Tech Reviews, Apps, Phones, & Gaming","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/businessyield.com\/tech\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff","name":"Jimmy Anisulowo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","caption":"Jimmy Anisulowo"},"description":"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.","sameAs":["https:\/\/www.facebook.com\/Jay.Arnis","https:\/\/www.instagram.com\/forlahjay\/","https:\/\/x.com\/https:\/\/twitter.com\/forlahjay"],"url":"https:\/\/businessyield.com\/tech\/author\/jimmy\/"}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","jetpack_sharing_enabled":true,"gt_translate_keys":[{"key":"link","format":"url"}],"_links":{"self":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/users\/290"}],"replies":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/comments?post=14754"}],"version-history":[{"count":1,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions"}],"predecessor-version":[{"id":14760,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions\/14760"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media\/14758"}],"wp:attachment":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media?parent=14754"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/categories?post=14754"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/tags?post=14754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
Successful and\u00a0comprehensive threat detection\u00a0requires understanding common adversary techniques. This includes the ones that may especially pose a threat to your organization, and how to detect and mitigate these attacks. However, the\u00a0volume and breadth of attack tactics\u00a0make it nearly impossible for any single organization to monitor every single attack type. This is without taking into account cataloging and translating those findings in a constructive way to anyone outside of their organization.<\/p>\n\n\n\n
This was why MITRE developed the ATT&CK framework. ATT&CK, which is an acronym for Adversarial Tactics, Techniques, and Common Knowledge, is a knowledge base of adversary tactics and techniques. These techniques are indexed and broken down into detail the exact steps and methods that hackers use, making it easy for teams to understand the actions that may be used against a particular platform. <\/p>\n\n\n\n
To go a step further, MITRE also incorporates\u00a0cyber-threat intelligence\u00a0documenting adversary group behavior profiles to document which attack groups use which techniques.<\/p>\n\n\n\n
The ATT&CK matrix structure is similar to a periodic table, with column headers outlining phases in the attack chain (from Initial Access all the way to Impact). The rows below them detail specific techniques. Framework users can further explore any of the techniques to learn more about the tactics, platforms exploited, example procedures, mitigation, and detections.<\/p>\n\n\n\n
What is in the MITRE ATT&CK Matrix?<\/strong><\/h2>\n\n\n\nThe MITRE ATT&CK matrix contains a set of techniques used by adversaries to accomplish a specific objective. Those objectives are categorized as tactics in the ATT&CK Matrix. <\/p>\n\n\n\n
The objectives are presented linearly from the point of reconnaissance to the final goal of exfiltration or “impact”. Looking at the broadest version of ATT&CK for Enterprise, which includes Windows, macOS, Linux, PRE, Azure AD, Office 365, Google Workspace, SaaS, IaaS, Network, and Containers, the following adversary tactics are categorized:<\/p>\n\n\n\n
\n- Reconnaissance<\/strong>. Gathering information to plan future adversary operations, i.e., information about the target organization<\/li>\n\n\n\n
- Resource Development<\/strong>. Establishing resources to support operations, i.e., setting up command and control infrastructure<\/li>\n\n\n\n
- Initial Access<\/strong>. Trying to get into your network, i.e., spear phishing<\/li>\n\n\n\n
- Execution<\/strong>. Trying the run malicious code, i.e., running a remote access tool<\/li>\n\n\n\n
- Persistence<\/strong>. Trying to maintain their foothold, i.e., changing configurations<\/li>\n\n\n\n
- Privilege Escalation<\/strong>. Trying to gain higher-level permissions, i.e., leveraging a vulnerability to elevate access<\/li>\n\n\n\n
- Defense Evasion<\/strong>. Trying to avoid being detected, i.e., using trusted processes to hide malware<\/li>\n\n\n\n
- Credential Access<\/strong>. Stealing account names and passwords, i.e., keylogging<\/li>\n\n\n\n
- Discovery<\/strong>. Trying to figure out your environment, i.e., exploring what they can control<\/li>\n\n\n\n
- Lateral Movement<\/strong>. Moving through your environment, i.e., using legitimate credentials to pivot through multiple systems<\/li>\n\n\n\n
- Collection<\/strong>. Gathering data of interest to the adversary goal, i.e., accessing data in cloud storage<\/li>\n\n\n\n
- Command and Control<\/strong>. Communicating with compromised systems to control them, i.e., mimicking normal web traffic to communicate with a victim network<\/li>\n\n\n\n
- Exfiltration<\/strong>. Stealing data, i.e., transferring data to a cloud account<\/li>\n\n\n\n
- Impact<\/strong>. Manipulate, interrupt, or destroy systems and data, i.e., encrypting data with ransomware<\/li>\n<\/ul>\n\n\n\n
Within each tactic of the MITRE ATT&CK matrix, there are adversary techniques, which describe the actual activity carried out by the adversary. Some techniques have sub-techniques that explain how an adversary carries out a specific technique in greater detail.<\/p>\n\n\n\n
The full ATT&CK Matrix for Enterprise from the MITRE ATT&CK navigator is represented below:<\/span><\/h5>\n\n\n\nMITRE ATT&CK for Enterprise, 2021<\/em><\/figcaption><\/figure><\/div>\n\n\nHow to use the MITRE ATT&CK framework matrix<\/strong><\/h2>\n\n\n\nThe MITRE ATT&CK framework can help an organization in several ways. In general, the following are applicable benefits to adopting MITRE ATT&CK:<\/p>\n\n\n\n
\n- Adversary Emulation<\/strong>. Assesses security by applying intelligence about an adversary and how it operates to emulate a threat. ATT&CK can be used to create adversary emulation scenarios to test and verify defenses.<\/li>\n\n\n\n
- Behavioral Analytics Development<\/strong>. Links together suspicious activity to monitor adversary activity. ATT&CK can be used to simplify and organize patterns of suspicious activity deemed malicious.<\/li>\n\n\n\n
- Red Teaming<\/strong>. Acts as an adversary to demonstrate the impact of a breach. ATT&CK can be used to create red team plans and organize operations.<\/li>\n\n\n\n
- Defensive Gap Assessment<\/strong>. Determines what parts of the enterprise lack defenses and\/or visibility. ATT&CK can be used to assess existing tools or test new tools before purchasing, to determine security coverage and prioritize investment.<\/li>\n\n\n\n
- SOC Maturity Assessment<\/strong>. Similar to the Defensive Gap Assessment, ATT&CK can be used to determine how effective a security operations center (SOC) is at detecting, analyzing, and responding to breaches.<\/li>\n\n\n\n
- Cyber Threat Intelligence Enrichment<\/strong>. Enhances information about threats and threat actors. ATT&CK allows defenders to assess whether they are able to defend against specific Advanced Persistent Threats (ATP) and common behaviors across multiple threat actors.<\/li>\n<\/ol>\n\n\n\n
Implementing MITRE ATT&CK typically involves either manual mapping or integration with cybersecurity tools, the most common of which are Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and Cloud Access Security Broker (CASB).<\/p>\n\n\n\n
Use cases of the MITRE ATT&CK framework<\/strong><\/h2>\n\n\n\nTwo broad use cases for the framework are penetration testing (pen testing) and cybersecurity service evaluation. <\/p>\n\n\n\n
In pen testing, organizations\u00a0designate a red team\u00a0— much like MITRE did in its Fort Meade eXperiment (FMX) research project — to simulate behavior and find vulnerabilities.\u00a0Pen testers\u00a0can use MITRE to learn how to accurately simulate behaviors so that they can eventually develop accurate defenses.<\/p>\n\n\n\n
Cybersecurity vendors can also use MITRE’s evaluations to determine the strength of their products and services. The evaluations provide objective insights into the use of specific commercial security products, offer a transparent analysis of a given product’s capabilities, and strengthen the cybersecurity community as a whole by strengthening vendors that develop products responsible for customer security across many industries.<\/p>\n\n\n\n
Other use cases include cybersecurity gap assessments, security operations maturity assessments,\u00a0user and entity behavior analytics, threat detection and threat intelligence.\u00a0MITRE ATT&CK use cases continue to evolve\u00a0and emerge.<\/p>\n\n\n\n
Benefits of the MITRE ATT&CK framework<\/h2>\n\n\n\n
The broad benefits of the framework include the following:<\/p>\n\n\n\n
\n- A more concrete account of adversarial behaviors.<\/li>\n\n\n\n
- An account of not just threat indicators, but threat groups as well. Businesses can use Mitre to not only detect behaviors but also make educated guesses about who is performing them and track behaviors across different attacker groups. Its attack page features group-based info.<\/li>\n\n\n\n
- Widely used and trusted across many industries, with sector-specific threat information.<\/li>\n\n\n\n
- Takes a communal approach to threat reporting that ensures info is up to date and checked by the public, as well as Mitre.<\/li>\n<\/ul>\n\n\n\n
Using the framework, a business can do the following:<\/p>\n\n\n\n
\n- associate attack behavior to different groups;<\/li>\n\n\n\n
- pen test its network;<\/li>\n\n\n\n
- find vulnerabilities in its network and map ATT&CK methodologies to threats;<\/li>\n\n\n\n
- discover\u00a0network misconfigurations;<\/li>\n\n\n\n
- share its cybersecurity knowledge with the broader community; and<\/li>\n\n\n\n
- standardize disparate security tools and techniques to create a more\u00a0cohesive security strategy.<\/li>\n<\/ul>\n\n\n\n
Recommended Articles <\/strong><\/span><\/h2>\n\n\n\n\n- PII In Cybersecurity: What Is It And How Does It Work?<\/a><\/li>\n\n\n\n
- What Is SOAR In Cybersecurity? Definition, Tools & Benefits<\/a><\/li>\n\n\n\n
- Cybersecurity Risk Assessment: What It Is & How To Perform It<\/a><\/li>\n\n\n\n
- What Is Keylogging & How Does It Work?<\/a><\/li>\n\n\n\n
- CIA Triad in Cybersecurity: What Is It & Why Is It Important?<\/a><\/li>\n\n\n\n
- What is Tailgating in Cybersecurity & How to Prevent It<\/a><\/li>\n<\/ul>\n\n\n\n
References<\/strong><\/span><\/h2>\n\n\n\n\n- Trellix<\/a><\/li>\n\n\n\n
- Rapid7<\/a><\/li>\n\n\n\n
- TechTarget<\/a><\/li>\n<\/ul>\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"excerpt":{"rendered":"MITRE ATT&CK\u00ae stands for MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK). The MITRE ATT&CK framework is a…\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"author":290,"featured_media":14758,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[302],"tags":[],"class_list":{"0":"post-14754","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security"},"yoast_head":"\n
MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology<\/title>\n<meta name=\"description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\" \/>\n<meta property=\"og:description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:site_name\" content=\"Business Yield Technology\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/Jay.Arnis\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-21T17:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Jimmy Anisulowo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/forlahjay\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jimmy Anisulowo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"url\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\",\"isPartOf\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"datePublished\":\"2023-11-21T17:00:00+00:00\",\"author\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\"},\"description\":\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\",\"breadcrumb\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"width\":1600,\"height\":900,\"caption\":\"MITRE ATT&CK Framework\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/businessyield.com\/tech\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/businessyield.com\/tech\/#website\",\"url\":\"https:\/\/businessyield.com\/tech\/\",\"name\":\"Business Yield Technology\",\"description\":\"Best Tech Reviews, Apps, Phones, & Gaming\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/businessyield.com\/tech\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\",\"name\":\"Jimmy Anisulowo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"caption\":\"Jimmy Anisulowo\"},\"description\":\"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.\",\"sameAs\":[\"https:\/\/www.facebook.com\/Jay.Arnis\",\"https:\/\/www.instagram.com\/forlahjay\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/forlahjay\"],\"url\":\"https:\/\/businessyield.com\/tech\/author\/jimmy\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_locale":"en_US","og_type":"article","og_title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","og_description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","og_url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_site_name":"Business Yield Technology","article_author":"https:\/\/www.facebook.com\/Jay.Arnis","article_published_time":"2023-11-21T17:00:00+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","type":"image\/webp"}],"author":"Jimmy Anisulowo","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/forlahjay","twitter_misc":{"Written by":"Jimmy Anisulowo","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","name":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","isPartOf":{"@id":"https:\/\/businessyield.com\/tech\/#website"},"primaryImageOfPage":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"image":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","datePublished":"2023-11-21T17:00:00+00:00","author":{"@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff"},"description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","breadcrumb":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage","url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","contentUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","width":1600,"height":900,"caption":"MITRE ATT&CK Framework"},{"@type":"BreadcrumbList","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/businessyield.com\/tech\/"},{"@type":"ListItem","position":2,"name":"MITRE ATT&CK Framework: Everything You Need to Know"}]},{"@type":"WebSite","@id":"https:\/\/businessyield.com\/tech\/#website","url":"https:\/\/businessyield.com\/tech\/","name":"Business Yield Technology","description":"Best Tech Reviews, Apps, Phones, & Gaming","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/businessyield.com\/tech\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff","name":"Jimmy Anisulowo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","caption":"Jimmy Anisulowo"},"description":"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.","sameAs":["https:\/\/www.facebook.com\/Jay.Arnis","https:\/\/www.instagram.com\/forlahjay\/","https:\/\/x.com\/https:\/\/twitter.com\/forlahjay"],"url":"https:\/\/businessyield.com\/tech\/author\/jimmy\/"}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","jetpack_sharing_enabled":true,"gt_translate_keys":[{"key":"link","format":"url"}],"_links":{"self":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/users\/290"}],"replies":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/comments?post=14754"}],"version-history":[{"count":1,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions"}],"predecessor-version":[{"id":14760,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions\/14760"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media\/14758"}],"wp:attachment":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media?parent=14754"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/categories?post=14754"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/tags?post=14754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
Within each tactic of the MITRE ATT&CK matrix, there are adversary techniques, which describe the actual activity carried out by the adversary. Some techniques have sub-techniques that explain how an adversary carries out a specific technique in greater detail.<\/p>\n\n\n\n
The full ATT&CK Matrix for Enterprise from the MITRE ATT&CK navigator is represented below:<\/span><\/h5>\n\n\n\nMITRE ATT&CK for Enterprise, 2021<\/em><\/figcaption><\/figure><\/div>\n\n\nHow to use the MITRE ATT&CK framework matrix<\/strong><\/h2>\n\n\n\nThe MITRE ATT&CK framework can help an organization in several ways. In general, the following are applicable benefits to adopting MITRE ATT&CK:<\/p>\n\n\n\n
\n- Adversary Emulation<\/strong>. Assesses security by applying intelligence about an adversary and how it operates to emulate a threat. ATT&CK can be used to create adversary emulation scenarios to test and verify defenses.<\/li>\n\n\n\n
- Behavioral Analytics Development<\/strong>. Links together suspicious activity to monitor adversary activity. ATT&CK can be used to simplify and organize patterns of suspicious activity deemed malicious.<\/li>\n\n\n\n
- Red Teaming<\/strong>. Acts as an adversary to demonstrate the impact of a breach. ATT&CK can be used to create red team plans and organize operations.<\/li>\n\n\n\n
- Defensive Gap Assessment<\/strong>. Determines what parts of the enterprise lack defenses and\/or visibility. ATT&CK can be used to assess existing tools or test new tools before purchasing, to determine security coverage and prioritize investment.<\/li>\n\n\n\n
- SOC Maturity Assessment<\/strong>. Similar to the Defensive Gap Assessment, ATT&CK can be used to determine how effective a security operations center (SOC) is at detecting, analyzing, and responding to breaches.<\/li>\n\n\n\n
- Cyber Threat Intelligence Enrichment<\/strong>. Enhances information about threats and threat actors. ATT&CK allows defenders to assess whether they are able to defend against specific Advanced Persistent Threats (ATP) and common behaviors across multiple threat actors.<\/li>\n<\/ol>\n\n\n\n
Implementing MITRE ATT&CK typically involves either manual mapping or integration with cybersecurity tools, the most common of which are Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and Cloud Access Security Broker (CASB).<\/p>\n\n\n\n
Use cases of the MITRE ATT&CK framework<\/strong><\/h2>\n\n\n\nTwo broad use cases for the framework are penetration testing (pen testing) and cybersecurity service evaluation. <\/p>\n\n\n\n
In pen testing, organizations\u00a0designate a red team\u00a0— much like MITRE did in its Fort Meade eXperiment (FMX) research project — to simulate behavior and find vulnerabilities.\u00a0Pen testers\u00a0can use MITRE to learn how to accurately simulate behaviors so that they can eventually develop accurate defenses.<\/p>\n\n\n\n
Cybersecurity vendors can also use MITRE’s evaluations to determine the strength of their products and services. The evaluations provide objective insights into the use of specific commercial security products, offer a transparent analysis of a given product’s capabilities, and strengthen the cybersecurity community as a whole by strengthening vendors that develop products responsible for customer security across many industries.<\/p>\n\n\n\n
Other use cases include cybersecurity gap assessments, security operations maturity assessments,\u00a0user and entity behavior analytics, threat detection and threat intelligence.\u00a0MITRE ATT&CK use cases continue to evolve\u00a0and emerge.<\/p>\n\n\n\n
Benefits of the MITRE ATT&CK framework<\/h2>\n\n\n\n
The broad benefits of the framework include the following:<\/p>\n\n\n\n
\n- A more concrete account of adversarial behaviors.<\/li>\n\n\n\n
- An account of not just threat indicators, but threat groups as well. Businesses can use Mitre to not only detect behaviors but also make educated guesses about who is performing them and track behaviors across different attacker groups. Its attack page features group-based info.<\/li>\n\n\n\n
- Widely used and trusted across many industries, with sector-specific threat information.<\/li>\n\n\n\n
- Takes a communal approach to threat reporting that ensures info is up to date and checked by the public, as well as Mitre.<\/li>\n<\/ul>\n\n\n\n
Using the framework, a business can do the following:<\/p>\n\n\n\n
\n- associate attack behavior to different groups;<\/li>\n\n\n\n
- pen test its network;<\/li>\n\n\n\n
- find vulnerabilities in its network and map ATT&CK methodologies to threats;<\/li>\n\n\n\n
- discover\u00a0network misconfigurations;<\/li>\n\n\n\n
- share its cybersecurity knowledge with the broader community; and<\/li>\n\n\n\n
- standardize disparate security tools and techniques to create a more\u00a0cohesive security strategy.<\/li>\n<\/ul>\n\n\n\n
Recommended Articles <\/strong><\/span><\/h2>\n\n\n\n\n- PII In Cybersecurity: What Is It And How Does It Work?<\/a><\/li>\n\n\n\n
- What Is SOAR In Cybersecurity? Definition, Tools & Benefits<\/a><\/li>\n\n\n\n
- Cybersecurity Risk Assessment: What It Is & How To Perform It<\/a><\/li>\n\n\n\n
- What Is Keylogging & How Does It Work?<\/a><\/li>\n\n\n\n
- CIA Triad in Cybersecurity: What Is It & Why Is It Important?<\/a><\/li>\n\n\n\n
- What is Tailgating in Cybersecurity & How to Prevent It<\/a><\/li>\n<\/ul>\n\n\n\n
References<\/strong><\/span><\/h2>\n\n\n\n\n- Trellix<\/a><\/li>\n\n\n\n
- Rapid7<\/a><\/li>\n\n\n\n
- TechTarget<\/a><\/li>\n<\/ul>\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"excerpt":{"rendered":"MITRE ATT&CK\u00ae stands for MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK). The MITRE ATT&CK framework is a…\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"author":290,"featured_media":14758,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[302],"tags":[],"class_list":{"0":"post-14754","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security"},"yoast_head":"\n
MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology<\/title>\n<meta name=\"description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\" \/>\n<meta property=\"og:description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:site_name\" content=\"Business Yield Technology\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/Jay.Arnis\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-21T17:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Jimmy Anisulowo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/forlahjay\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jimmy Anisulowo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"url\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\",\"isPartOf\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"datePublished\":\"2023-11-21T17:00:00+00:00\",\"author\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\"},\"description\":\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\",\"breadcrumb\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"width\":1600,\"height\":900,\"caption\":\"MITRE ATT&CK Framework\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/businessyield.com\/tech\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/businessyield.com\/tech\/#website\",\"url\":\"https:\/\/businessyield.com\/tech\/\",\"name\":\"Business Yield Technology\",\"description\":\"Best Tech Reviews, Apps, Phones, & Gaming\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/businessyield.com\/tech\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\",\"name\":\"Jimmy Anisulowo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"caption\":\"Jimmy Anisulowo\"},\"description\":\"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.\",\"sameAs\":[\"https:\/\/www.facebook.com\/Jay.Arnis\",\"https:\/\/www.instagram.com\/forlahjay\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/forlahjay\"],\"url\":\"https:\/\/businessyield.com\/tech\/author\/jimmy\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_locale":"en_US","og_type":"article","og_title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","og_description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","og_url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_site_name":"Business Yield Technology","article_author":"https:\/\/www.facebook.com\/Jay.Arnis","article_published_time":"2023-11-21T17:00:00+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","type":"image\/webp"}],"author":"Jimmy Anisulowo","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/forlahjay","twitter_misc":{"Written by":"Jimmy Anisulowo","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","name":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","isPartOf":{"@id":"https:\/\/businessyield.com\/tech\/#website"},"primaryImageOfPage":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"image":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","datePublished":"2023-11-21T17:00:00+00:00","author":{"@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff"},"description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","breadcrumb":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage","url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","contentUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","width":1600,"height":900,"caption":"MITRE ATT&CK Framework"},{"@type":"BreadcrumbList","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/businessyield.com\/tech\/"},{"@type":"ListItem","position":2,"name":"MITRE ATT&CK Framework: Everything You Need to Know"}]},{"@type":"WebSite","@id":"https:\/\/businessyield.com\/tech\/#website","url":"https:\/\/businessyield.com\/tech\/","name":"Business Yield Technology","description":"Best Tech Reviews, Apps, Phones, & Gaming","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/businessyield.com\/tech\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff","name":"Jimmy Anisulowo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","caption":"Jimmy Anisulowo"},"description":"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.","sameAs":["https:\/\/www.facebook.com\/Jay.Arnis","https:\/\/www.instagram.com\/forlahjay\/","https:\/\/x.com\/https:\/\/twitter.com\/forlahjay"],"url":"https:\/\/businessyield.com\/tech\/author\/jimmy\/"}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","jetpack_sharing_enabled":true,"gt_translate_keys":[{"key":"link","format":"url"}],"_links":{"self":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/users\/290"}],"replies":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/comments?post=14754"}],"version-history":[{"count":1,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions"}],"predecessor-version":[{"id":14760,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions\/14760"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media\/14758"}],"wp:attachment":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media?parent=14754"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/categories?post=14754"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/tags?post=14754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
How to use the MITRE ATT&CK framework matrix<\/strong><\/h2>\n\n\n\nThe MITRE ATT&CK framework can help an organization in several ways. In general, the following are applicable benefits to adopting MITRE ATT&CK:<\/p>\n\n\n\n
\n- Adversary Emulation<\/strong>. Assesses security by applying intelligence about an adversary and how it operates to emulate a threat. ATT&CK can be used to create adversary emulation scenarios to test and verify defenses.<\/li>\n\n\n\n
- Behavioral Analytics Development<\/strong>. Links together suspicious activity to monitor adversary activity. ATT&CK can be used to simplify and organize patterns of suspicious activity deemed malicious.<\/li>\n\n\n\n
- Red Teaming<\/strong>. Acts as an adversary to demonstrate the impact of a breach. ATT&CK can be used to create red team plans and organize operations.<\/li>\n\n\n\n
- Defensive Gap Assessment<\/strong>. Determines what parts of the enterprise lack defenses and\/or visibility. ATT&CK can be used to assess existing tools or test new tools before purchasing, to determine security coverage and prioritize investment.<\/li>\n\n\n\n
- SOC Maturity Assessment<\/strong>. Similar to the Defensive Gap Assessment, ATT&CK can be used to determine how effective a security operations center (SOC) is at detecting, analyzing, and responding to breaches.<\/li>\n\n\n\n
- Cyber Threat Intelligence Enrichment<\/strong>. Enhances information about threats and threat actors. ATT&CK allows defenders to assess whether they are able to defend against specific Advanced Persistent Threats (ATP) and common behaviors across multiple threat actors.<\/li>\n<\/ol>\n\n\n\n
Implementing MITRE ATT&CK typically involves either manual mapping or integration with cybersecurity tools, the most common of which are Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and Cloud Access Security Broker (CASB).<\/p>\n\n\n\n
Use cases of the MITRE ATT&CK framework<\/strong><\/h2>\n\n\n\nTwo broad use cases for the framework are penetration testing (pen testing) and cybersecurity service evaluation. <\/p>\n\n\n\n
In pen testing, organizations\u00a0designate a red team\u00a0— much like MITRE did in its Fort Meade eXperiment (FMX) research project — to simulate behavior and find vulnerabilities.\u00a0Pen testers\u00a0can use MITRE to learn how to accurately simulate behaviors so that they can eventually develop accurate defenses.<\/p>\n\n\n\n
Cybersecurity vendors can also use MITRE’s evaluations to determine the strength of their products and services. The evaluations provide objective insights into the use of specific commercial security products, offer a transparent analysis of a given product’s capabilities, and strengthen the cybersecurity community as a whole by strengthening vendors that develop products responsible for customer security across many industries.<\/p>\n\n\n\n
Other use cases include cybersecurity gap assessments, security operations maturity assessments,\u00a0user and entity behavior analytics, threat detection and threat intelligence.\u00a0MITRE ATT&CK use cases continue to evolve\u00a0and emerge.<\/p>\n\n\n\n
Benefits of the MITRE ATT&CK framework<\/h2>\n\n\n\n
The broad benefits of the framework include the following:<\/p>\n\n\n\n
\n- A more concrete account of adversarial behaviors.<\/li>\n\n\n\n
- An account of not just threat indicators, but threat groups as well. Businesses can use Mitre to not only detect behaviors but also make educated guesses about who is performing them and track behaviors across different attacker groups. Its attack page features group-based info.<\/li>\n\n\n\n
- Widely used and trusted across many industries, with sector-specific threat information.<\/li>\n\n\n\n
- Takes a communal approach to threat reporting that ensures info is up to date and checked by the public, as well as Mitre.<\/li>\n<\/ul>\n\n\n\n
Using the framework, a business can do the following:<\/p>\n\n\n\n
\n- associate attack behavior to different groups;<\/li>\n\n\n\n
- pen test its network;<\/li>\n\n\n\n
- find vulnerabilities in its network and map ATT&CK methodologies to threats;<\/li>\n\n\n\n
- discover\u00a0network misconfigurations;<\/li>\n\n\n\n
- share its cybersecurity knowledge with the broader community; and<\/li>\n\n\n\n
- standardize disparate security tools and techniques to create a more\u00a0cohesive security strategy.<\/li>\n<\/ul>\n\n\n\n
Recommended Articles <\/strong><\/span><\/h2>\n\n\n\n\n- PII In Cybersecurity: What Is It And How Does It Work?<\/a><\/li>\n\n\n\n
- What Is SOAR In Cybersecurity? Definition, Tools & Benefits<\/a><\/li>\n\n\n\n
- Cybersecurity Risk Assessment: What It Is & How To Perform It<\/a><\/li>\n\n\n\n
- What Is Keylogging & How Does It Work?<\/a><\/li>\n\n\n\n
- CIA Triad in Cybersecurity: What Is It & Why Is It Important?<\/a><\/li>\n\n\n\n
- What is Tailgating in Cybersecurity & How to Prevent It<\/a><\/li>\n<\/ul>\n\n\n\n
References<\/strong><\/span><\/h2>\n\n\n\n\n- Trellix<\/a><\/li>\n\n\n\n
- Rapid7<\/a><\/li>\n\n\n\n
- TechTarget<\/a><\/li>\n<\/ul>\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"excerpt":{"rendered":"MITRE ATT&CK\u00ae stands for MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK). The MITRE ATT&CK framework is a…\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"author":290,"featured_media":14758,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[302],"tags":[],"class_list":{"0":"post-14754","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security"},"yoast_head":"\n
MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology<\/title>\n<meta name=\"description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\" \/>\n<meta property=\"og:description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:site_name\" content=\"Business Yield Technology\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/Jay.Arnis\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-21T17:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Jimmy Anisulowo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/forlahjay\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jimmy Anisulowo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"url\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\",\"isPartOf\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"datePublished\":\"2023-11-21T17:00:00+00:00\",\"author\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\"},\"description\":\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\",\"breadcrumb\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"width\":1600,\"height\":900,\"caption\":\"MITRE ATT&CK Framework\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/businessyield.com\/tech\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/businessyield.com\/tech\/#website\",\"url\":\"https:\/\/businessyield.com\/tech\/\",\"name\":\"Business Yield Technology\",\"description\":\"Best Tech Reviews, Apps, Phones, & Gaming\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/businessyield.com\/tech\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\",\"name\":\"Jimmy Anisulowo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"caption\":\"Jimmy Anisulowo\"},\"description\":\"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.\",\"sameAs\":[\"https:\/\/www.facebook.com\/Jay.Arnis\",\"https:\/\/www.instagram.com\/forlahjay\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/forlahjay\"],\"url\":\"https:\/\/businessyield.com\/tech\/author\/jimmy\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_locale":"en_US","og_type":"article","og_title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","og_description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","og_url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_site_name":"Business Yield Technology","article_author":"https:\/\/www.facebook.com\/Jay.Arnis","article_published_time":"2023-11-21T17:00:00+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","type":"image\/webp"}],"author":"Jimmy Anisulowo","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/forlahjay","twitter_misc":{"Written by":"Jimmy Anisulowo","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","name":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","isPartOf":{"@id":"https:\/\/businessyield.com\/tech\/#website"},"primaryImageOfPage":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"image":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","datePublished":"2023-11-21T17:00:00+00:00","author":{"@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff"},"description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","breadcrumb":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage","url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","contentUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","width":1600,"height":900,"caption":"MITRE ATT&CK Framework"},{"@type":"BreadcrumbList","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/businessyield.com\/tech\/"},{"@type":"ListItem","position":2,"name":"MITRE ATT&CK Framework: Everything You Need to Know"}]},{"@type":"WebSite","@id":"https:\/\/businessyield.com\/tech\/#website","url":"https:\/\/businessyield.com\/tech\/","name":"Business Yield Technology","description":"Best Tech Reviews, Apps, Phones, & Gaming","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/businessyield.com\/tech\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff","name":"Jimmy Anisulowo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","caption":"Jimmy Anisulowo"},"description":"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.","sameAs":["https:\/\/www.facebook.com\/Jay.Arnis","https:\/\/www.instagram.com\/forlahjay\/","https:\/\/x.com\/https:\/\/twitter.com\/forlahjay"],"url":"https:\/\/businessyield.com\/tech\/author\/jimmy\/"}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","jetpack_sharing_enabled":true,"gt_translate_keys":[{"key":"link","format":"url"}],"_links":{"self":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/users\/290"}],"replies":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/comments?post=14754"}],"version-history":[{"count":1,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions"}],"predecessor-version":[{"id":14760,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions\/14760"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media\/14758"}],"wp:attachment":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media?parent=14754"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/categories?post=14754"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/tags?post=14754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
Implementing MITRE ATT&CK typically involves either manual mapping or integration with cybersecurity tools, the most common of which are Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and Cloud Access Security Broker (CASB).<\/p>\n\n\n\n
Use cases of the MITRE ATT&CK framework<\/strong><\/h2>\n\n\n\nTwo broad use cases for the framework are penetration testing (pen testing) and cybersecurity service evaluation. <\/p>\n\n\n\n
In pen testing, organizations\u00a0designate a red team\u00a0— much like MITRE did in its Fort Meade eXperiment (FMX) research project — to simulate behavior and find vulnerabilities.\u00a0Pen testers\u00a0can use MITRE to learn how to accurately simulate behaviors so that they can eventually develop accurate defenses.<\/p>\n\n\n\n
Cybersecurity vendors can also use MITRE’s evaluations to determine the strength of their products and services. The evaluations provide objective insights into the use of specific commercial security products, offer a transparent analysis of a given product’s capabilities, and strengthen the cybersecurity community as a whole by strengthening vendors that develop products responsible for customer security across many industries.<\/p>\n\n\n\n
Other use cases include cybersecurity gap assessments, security operations maturity assessments,\u00a0user and entity behavior analytics, threat detection and threat intelligence.\u00a0MITRE ATT&CK use cases continue to evolve\u00a0and emerge.<\/p>\n\n\n\n
Benefits of the MITRE ATT&CK framework<\/h2>\n\n\n\n
The broad benefits of the framework include the following:<\/p>\n\n\n\n
\n- A more concrete account of adversarial behaviors.<\/li>\n\n\n\n
- An account of not just threat indicators, but threat groups as well. Businesses can use Mitre to not only detect behaviors but also make educated guesses about who is performing them and track behaviors across different attacker groups. Its attack page features group-based info.<\/li>\n\n\n\n
- Widely used and trusted across many industries, with sector-specific threat information.<\/li>\n\n\n\n
- Takes a communal approach to threat reporting that ensures info is up to date and checked by the public, as well as Mitre.<\/li>\n<\/ul>\n\n\n\n
Using the framework, a business can do the following:<\/p>\n\n\n\n
\n- associate attack behavior to different groups;<\/li>\n\n\n\n
- pen test its network;<\/li>\n\n\n\n
- find vulnerabilities in its network and map ATT&CK methodologies to threats;<\/li>\n\n\n\n
- discover\u00a0network misconfigurations;<\/li>\n\n\n\n
- share its cybersecurity knowledge with the broader community; and<\/li>\n\n\n\n
- standardize disparate security tools and techniques to create a more\u00a0cohesive security strategy.<\/li>\n<\/ul>\n\n\n\n
Recommended Articles <\/strong><\/span><\/h2>\n\n\n\n\n- PII In Cybersecurity: What Is It And How Does It Work?<\/a><\/li>\n\n\n\n
- What Is SOAR In Cybersecurity? Definition, Tools & Benefits<\/a><\/li>\n\n\n\n
- Cybersecurity Risk Assessment: What It Is & How To Perform It<\/a><\/li>\n\n\n\n
- What Is Keylogging & How Does It Work?<\/a><\/li>\n\n\n\n
- CIA Triad in Cybersecurity: What Is It & Why Is It Important?<\/a><\/li>\n\n\n\n
- What is Tailgating in Cybersecurity & How to Prevent It<\/a><\/li>\n<\/ul>\n\n\n\n
References<\/strong><\/span><\/h2>\n\n\n\n\n- Trellix<\/a><\/li>\n\n\n\n
- Rapid7<\/a><\/li>\n\n\n\n
- TechTarget<\/a><\/li>\n<\/ul>\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"excerpt":{"rendered":"MITRE ATT&CK\u00ae stands for MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK). The MITRE ATT&CK framework is a…\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"author":290,"featured_media":14758,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[302],"tags":[],"class_list":{"0":"post-14754","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security"},"yoast_head":"\n
MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology<\/title>\n<meta name=\"description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\" \/>\n<meta property=\"og:description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:site_name\" content=\"Business Yield Technology\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/Jay.Arnis\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-21T17:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Jimmy Anisulowo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/forlahjay\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jimmy Anisulowo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"url\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\",\"isPartOf\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"datePublished\":\"2023-11-21T17:00:00+00:00\",\"author\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\"},\"description\":\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\",\"breadcrumb\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"width\":1600,\"height\":900,\"caption\":\"MITRE ATT&CK Framework\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/businessyield.com\/tech\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/businessyield.com\/tech\/#website\",\"url\":\"https:\/\/businessyield.com\/tech\/\",\"name\":\"Business Yield Technology\",\"description\":\"Best Tech Reviews, Apps, Phones, & Gaming\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/businessyield.com\/tech\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\",\"name\":\"Jimmy Anisulowo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"caption\":\"Jimmy Anisulowo\"},\"description\":\"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.\",\"sameAs\":[\"https:\/\/www.facebook.com\/Jay.Arnis\",\"https:\/\/www.instagram.com\/forlahjay\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/forlahjay\"],\"url\":\"https:\/\/businessyield.com\/tech\/author\/jimmy\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_locale":"en_US","og_type":"article","og_title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","og_description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","og_url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_site_name":"Business Yield Technology","article_author":"https:\/\/www.facebook.com\/Jay.Arnis","article_published_time":"2023-11-21T17:00:00+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","type":"image\/webp"}],"author":"Jimmy Anisulowo","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/forlahjay","twitter_misc":{"Written by":"Jimmy Anisulowo","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","name":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","isPartOf":{"@id":"https:\/\/businessyield.com\/tech\/#website"},"primaryImageOfPage":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"image":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","datePublished":"2023-11-21T17:00:00+00:00","author":{"@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff"},"description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","breadcrumb":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage","url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","contentUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","width":1600,"height":900,"caption":"MITRE ATT&CK Framework"},{"@type":"BreadcrumbList","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/businessyield.com\/tech\/"},{"@type":"ListItem","position":2,"name":"MITRE ATT&CK Framework: Everything You Need to Know"}]},{"@type":"WebSite","@id":"https:\/\/businessyield.com\/tech\/#website","url":"https:\/\/businessyield.com\/tech\/","name":"Business Yield Technology","description":"Best Tech Reviews, Apps, Phones, & Gaming","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/businessyield.com\/tech\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff","name":"Jimmy Anisulowo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","caption":"Jimmy Anisulowo"},"description":"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.","sameAs":["https:\/\/www.facebook.com\/Jay.Arnis","https:\/\/www.instagram.com\/forlahjay\/","https:\/\/x.com\/https:\/\/twitter.com\/forlahjay"],"url":"https:\/\/businessyield.com\/tech\/author\/jimmy\/"}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","jetpack_sharing_enabled":true,"gt_translate_keys":[{"key":"link","format":"url"}],"_links":{"self":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/users\/290"}],"replies":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/comments?post=14754"}],"version-history":[{"count":1,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions"}],"predecessor-version":[{"id":14760,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions\/14760"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media\/14758"}],"wp:attachment":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media?parent=14754"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/categories?post=14754"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/tags?post=14754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
Using the framework, a business can do the following:<\/p>\n\n\n\n
- \n
- associate attack behavior to different groups;<\/li>\n\n\n\n
- pen test its network;<\/li>\n\n\n\n
- find vulnerabilities in its network and map ATT&CK methodologies to threats;<\/li>\n\n\n\n
- discover\u00a0network misconfigurations;<\/li>\n\n\n\n
- share its cybersecurity knowledge with the broader community; and<\/li>\n\n\n\n
- standardize disparate security tools and techniques to create a more\u00a0cohesive security strategy.<\/li>\n<\/ul>\n\n\n\n
Recommended Articles <\/strong><\/span><\/h2>\n\n\n\n
- \n
- PII In Cybersecurity: What Is It And How Does It Work?<\/a><\/li>\n\n\n\n
- What Is SOAR In Cybersecurity? Definition, Tools & Benefits<\/a><\/li>\n\n\n\n
- Cybersecurity Risk Assessment: What It Is & How To Perform It<\/a><\/li>\n\n\n\n
- What Is Keylogging & How Does It Work?<\/a><\/li>\n\n\n\n
- CIA Triad in Cybersecurity: What Is It & Why Is It Important?<\/a><\/li>\n\n\n\n
- What is Tailgating in Cybersecurity & How to Prevent It<\/a><\/li>\n<\/ul>\n\n\n\n
References<\/strong><\/span><\/h2>\n\n\n\n
- \n
- Trellix<\/a><\/li>\n\n\n\n
- Rapid7<\/a><\/li>\n\n\n\n
- TechTarget<\/a><\/li>\n<\/ul>\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"excerpt":{"rendered":"MITRE ATT&CK\u00ae stands for MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK). The MITRE ATT&CK framework is a…\n","protected":false,"gt_translate_keys":[{"key":"rendered","format":"html"}]},"author":290,"featured_media":14758,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[302],"tags":[],"class_list":{"0":"post-14754","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security"},"yoast_head":"\n
MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology<\/title>\n<meta name=\"description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\" \/>\n<meta property=\"og:description\" content=\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\" \/>\n<meta property=\"og:site_name\" content=\"Business Yield Technology\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/Jay.Arnis\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-21T17:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Jimmy Anisulowo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/forlahjay\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Jimmy Anisulowo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"url\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\",\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology\",\"isPartOf\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"datePublished\":\"2023-11-21T17:00:00+00:00\",\"author\":{\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\"},\"description\":\"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.\",\"breadcrumb\":{\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1\",\"width\":1600,\"height\":900,\"caption\":\"MITRE ATT&CK Framework\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/businessyield.com\/tech\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"MITRE ATT&CK Framework: Everything You Need to Know\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/businessyield.com\/tech\/#website\",\"url\":\"https:\/\/businessyield.com\/tech\/\",\"name\":\"Business Yield Technology\",\"description\":\"Best Tech Reviews, Apps, Phones, & Gaming\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/businessyield.com\/tech\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff\",\"name\":\"Jimmy Anisulowo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g\",\"caption\":\"Jimmy Anisulowo\"},\"description\":\"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.\",\"sameAs\":[\"https:\/\/www.facebook.com\/Jay.Arnis\",\"https:\/\/www.instagram.com\/forlahjay\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/forlahjay\"],\"url\":\"https:\/\/businessyield.com\/tech\/author\/jimmy\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_locale":"en_US","og_type":"article","og_title":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","og_description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","og_url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","og_site_name":"Business Yield Technology","article_author":"https:\/\/www.facebook.com\/Jay.Arnis","article_published_time":"2023-11-21T17:00:00+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","type":"image\/webp"}],"author":"Jimmy Anisulowo","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/forlahjay","twitter_misc":{"Written by":"Jimmy Anisulowo","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","url":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/","name":"MITRE ATT&CK Framework: Everything You Need to Know - Business Yield Technology","isPartOf":{"@id":"https:\/\/businessyield.com\/tech\/#website"},"primaryImageOfPage":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"image":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","datePublished":"2023-11-21T17:00:00+00:00","author":{"@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff"},"description":"The MITRE ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that helps predict cyber attacks.","breadcrumb":{"@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#primaryimage","url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","contentUrl":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","width":1600,"height":900,"caption":"MITRE ATT&CK Framework"},{"@type":"BreadcrumbList","@id":"https:\/\/businessyield.com\/tech\/cyber-security\/mitre-attck-framework-everything-you-need-to-know\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/businessyield.com\/tech\/"},{"@type":"ListItem","position":2,"name":"MITRE ATT&CK Framework: Everything You Need to Know"}]},{"@type":"WebSite","@id":"https:\/\/businessyield.com\/tech\/#website","url":"https:\/\/businessyield.com\/tech\/","name":"Business Yield Technology","description":"Best Tech Reviews, Apps, Phones, & Gaming","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/businessyield.com\/tech\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/0f5b3b62b69726a967e6d217a4d242ff","name":"Jimmy Anisulowo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/businessyield.com\/tech\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/b20d2d093f1362590dc5b5f8b8cfb36e53decf98e57d0121be53eb533dc1f2a7?s=96&d=mm&r=g","caption":"Jimmy Anisulowo"},"description":"Jimmy generally lives his life by one dogma: steady improvement. This has taken him on a relentless pursuit of knowledge in diverse fields such as business, tech, insurance, health and many others. With a background in content creation and digital marketing plus over ten years of writing and research experience, he implements an expert's view to help his audiences gain valuable insight. He is also an avid reader, gamer, drummer, full-blown metalhead, and all-round fun gi.","sameAs":["https:\/\/www.facebook.com\/Jay.Arnis","https:\/\/www.instagram.com\/forlahjay\/","https:\/\/x.com\/https:\/\/twitter.com\/forlahjay"],"url":"https:\/\/businessyield.com\/tech\/author\/jimmy\/"}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/businessyield.com\/tech\/wp-content\/uploads\/sites\/2\/2023\/11\/MITREAttack_Framework_V2.webp?fit=1600%2C900&ssl=1","jetpack_sharing_enabled":true,"gt_translate_keys":[{"key":"link","format":"url"}],"_links":{"self":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/users\/290"}],"replies":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/comments?post=14754"}],"version-history":[{"count":1,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions"}],"predecessor-version":[{"id":14760,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/posts\/14754\/revisions\/14760"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media\/14758"}],"wp:attachment":[{"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/media?parent=14754"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/categories?post=14754"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/businessyield.com\/tech\/wp-json\/wp\/v2\/tags?post=14754"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}} - Rapid7<\/a><\/li>\n\n\n\n
- What Is SOAR In Cybersecurity? Definition, Tools & Benefits<\/a><\/li>\n\n\n\n
- PII In Cybersecurity: What Is It And How Does It Work?<\/a><\/li>\n\n\n\n