How to Counter MITRE ATT&CK with MITRE D3FEND

Показать описание

MITRE and the NSA are advising organizations to implement the D3FEND framework in their security plans. This framework provides all the actions needed for security teams to counter the attacker actions defined in the Attacker Tactics and Techniques (ATT&CK) framework. In this video, we cover the following:
► How D3FEND relates to ATT&CK
► The benefits of D3FEND
► Practical tips for using D3FEND to improve your security readiness

Speaker: John S. Mancini, PhD. Group Product Manager for Detect for SaaS

00:00 Introduction to MITRE ATT&CK and MITRE D3FEND
02:08 Who is MITRE?
05:23 The origins of the MITRE ATT&CK Framework
07:16 What is the MITRE ATT&CK Matrix
09:14 MITRE ATT&CK Framework updates
11:14 How to understand the MITRE ATT&CK Framework
14:02 The anatomy of a MITRE ATT&CK Technique
16:05 How to use the MITRE ATT&CK Framework
16:18 The MITRE ATT&CK Navigator
16:57 Communicating around cyberattacks
18:40 Mapping and documenting the current coverage around the attack
19:47 Building defense to prevent a cyberattack
20:45 MITRE ATT&CK limitations
24:28 What is the MITRE D3FEND framework?
25:43 The History of the MITRE D3FEND framework
27:42 The anatomy of a MITRE D3FEND countermeasure
28:54 The MITRE D3FEND Navigator
29:38 How to start using MITRE D3FEND
31:19 Key takeaways about MITRE ATT&CK and MITRE D3FEND
32:40 How Vectra leverages the MITRE frameworks
35:03 Q&A around MITRE ATT&CK and D3FEND

Рекомендации по теме

Комментарии

this talk is awesome. Thanks to John and Vectra.

NunoGuerreiroLive

Not sure if someone can calrify, but in ATT&CK we have mitigations (not detailed as I see them) but the counter-measures in D3FEND are more detailed from the defend point of view. Is this correct ?

NunoGuerreiroLive

Too many ads. It's informative but hard to get through because there's an ad every five minutes it seems.

This is great didn’t know about defend framework

shaqfufu

How to Counter MITRE ATT&CK with MITRE D3FEND

How to Counter MITRE ATT&CK with MITRE D3FEND

Testing Your Defenses Against the Top Ten MITRE ATT&CK Techniques

MITRE ATT&CK® Framework

Mitre ATT&CK Tactics, Techniques and Mitigations Series: Part 7 Defense Evasion

MITRE Def3nd VS MITRE ATT&CK! Why you should be using MITRE DEFEND! RIGHT NOW!

Security tool evaluations with MITRE ATT&CK - Francis Duff

A Guide to the MITRE ATT&CK Round I Product Evaluations

MITRE Shield Active Defense - How to Use Shield Techniques to Stop Targeted Ransomware Attacks

Mitre ATT&CK Tactics, Techniques and Mitigations Series: Part 9 Discovery

Bringing Intelligence into Cyber Deception with MITRE ATT&CK®

Breaking Down Real World Hacks - Cyber Autopsy with MITRE ATT&CK

How to use the MITRE ATT&CK framework to stop ransomware

MITRE ATT&CK Framework For Offensive & Defensive Operations

MITRE ATT&CK Framework for Beginners

The Anatomy of an Att&ck

Testing Your Defenses Against the Top Ten MITRE ATT&CK Techniques

Leveraging the MITRE ATT&CK Framework for Deception-Based Active Cyber Defense

Stop Container Attacks Using the MITRE ATT&CK(r) for Containers

How to Use MITRE ATT&CK Framework Detailed Approach 2022

Maze Ransomware Threat Hunting using MITRE ATT&CK

Mitre ATT&CK Tactics, Techniques and Mitigations Series: Part 2 Resource Development

How Cisco uses MITRE ATT&CK framework to protect against Ransomware

Mitre ATT&CK Tactics, Techniques and Mitigations Series: Part 8 Credential Access

MITRE ATT&CK Framework | The Defender's Cheat Code