SANS 2022 ATT&CK™ and D3FEND™ Report: Incorporating Frameworks into Your Analysis and Intelligence

  • Wednesday, 19 Jan 2022 1:00PM EST (19 Jan 2022 18:00 UTC)
  • Speaker: Matt Bromiley

For many years, organizations have relied on the MITRE ATT&CK™ framework as a valuable resource to catalog adversary tactics and techniques. The information security community has leveraged ATT&CK to help guide investigations, write robust detections, and enrich threat intelligence. In June 2021, a cooperation between the National Security Agency (NSA) and MITRE released D3FEND, a complementary framework that provides insight into defensive measures for enterprise defense.

This webcast will explore:

  • How to leverage D3FEND to enhance enterprise security defenses
  • How to utilize ATT&CK and D3FEND together to detect and counter attacker tactics and techniques
  • How to incorporate D3FEND countermeasures into your daily *DR workflows
  • How the security community can give back and make D3FEND even better

Click here to view the associated paper written by SANS Certified Instructor Matt Bromiley.



Cisco_Umbrella_Transparent.pngDevo.pngExtraHop Networks logoNEW_LOGO.jpguptycs_logo_2C_on-light_rgb.png