How To Increase MITRE ATT&CK Coverage with Network Traffic Analysis

  • Webcast Aired Thursday, 20 Jun 2019 3:30PM EDT (20 Jun 2019 19:30 UTC)
  • Speakers: Chris Crowley, John Smith

The MITRE ATT&CK Framework is a useful tool for SecOps teams trying to understand their security posture against common adversary tactics, techniques, and procedures (TTPs). In this presentation you'll learn how to take your ATT&CK understanding and coverage to the next level with network traffic analysis. You'll also learn:

  • Key tips for understanding the MITRE ATT&CK Framework and how to use it as a tool to improve your security posture.
  • What the framework is optimized for, and where it has room to grow
  • Which security tools and data sources you'll need to achieve the best coverage against TTPs in all 12 categories of the MITRE ATT&CK Framework