Cyber Threat Intelligence isn't just for the big companies! MITRE has built an open and expansive resource for all of us, and now we too can begin to leverage threat intelligence to improve our defenses and structure our operations. The Adversarial Tactics, Techniques, and Common Knowledge database (ATT&CK) helps us see not only the behaviors we can expect from the bad actors, but how we might mitigate the risk or detect their actions.
In this primer, we take a few minutes to get oriented and then set about evaluating some threat actors and their behaviors. After building that consolidated threat picture, we see how simple it is to compare that against defenses we have provisioned to help guide our future security efforts.
MITRE ATT&CK's Home Page: https://attack.mitre.org
ATT&CK Navigator (hosted): https://mitre-attack.github.io/attack-navigator/
ATT&CK Navigator (for install): https://github.com/mitre-attack/attack-navigator
MITRE's Center for Threat-Informed Defense: https://ctid.mitre-engenuity.org