home.aspx
 
. https://www.cybereason.com/blog/the-mitre-attck-framework-a-security-experts-guide
blog article
THE MITRE ATT&CK FRAMEWORK: A GUIDE BY SECURITY EXPERTS
MITRE ATT&CK is a comprehensive knowledge base and complex framework of over 200 techniques that adversaries may use over the course of an attack. These include specific and general techniques, as well as concepts and background information on well-known adversary groups and their campaigns. One of the more recent and most exciting components of MITRE ATT&CK is their ATT&CK-based product evaluations. These product evaluations use the ATT&CK framework to give specific evaluations of how security vendors approach detection for a comprehensive view. Their goal is to aid MITRE’s government sponsors and the industry as a whole to make more informed decisions to combat security threats and advance industry threat detection. WHAT ARE ATT&CK-BASED PRODUCT EVALUATIONS? MITRE ATT&CK-based Product Evaluations give details on how security vendors approach detection in the ATT&CK context. Thus far, the initial evaluation has been completed for several security vendors to report on how they identify the techniques used by threat actors for a specific APT without scores, rankings, or comparisons. READ MORE