Discover How to Empower Your Security Team Using The MITRE ATT&CK® Framework
Early and accurate detection of threats is still a challenge for security teams: hindered by an unfavorable Signal-to-Noise ratio, false positive alerts and lack of visibility, attacks are still being missed. Using multiple security domains, such as Endpoint, Cloud, and Identity also requires having in-house expertise in order to facilitate both domain-specific detection and complex, cross-domain attack detection, thereby avoiding detection-silos.
When trying to understand the nature and extent of attacks, the MITRE ATT&CK framework provides an abstraction layer that acts as a common language in the security community, unlike, for instance, the ambiguity of APT names coined by various vendors. Used correctly, the MITRE ATT&CK framework is an excellent baseline for early threat detection and response, as well as community-wide collaboration.
Hunters’ open Extended Detection and Response (XDR) solution extracts high-noise threat signals and alerts from existing security data, and automatically maps them to MITRE ATT&CK techniques across surfaces. The Hunters platform enables organizations to know, out-of-the-box and in real-time, what kind of threat coverage they have for their data sources and which detection capabilities they have for each data source mapped onto specific TTPs.
Hosted By
Inbar Raz, VP of Research at Hunters
What You'll Learn
During this session, Inbar shares:
- How to close detection gaps with mapping techniques to the MITRE ATT&CK framework, including low visibility surfaces like Cloud platforms
- How an Open XDR solution can enable organizations to detect entire attack kill chains in a timely manner
- Attack chains and their progression in time represented by groups and sub-groups of ATT&CK techniques
Watch this session to learn how to close threat detection gaps with open XDR.
.png?width=200&height=105&name=Social%20Video%20Image%20Black%20Hat%20(5).png)