How to Map MITRE ATT&CK Techniques:

The MITRE ATT&CK framework contains a tremendous amount of data that can prove valuable in a range of use cases, including spearphishing, threat hunting, incident response, vulnerability management and alert triage. ThreatQ makes the MITRE ATT&CK framework actionable. 

In this whitepaper you will learn how to…

• Enable investigations that originate  from the MITRE ATT&CK framework.
• Build relationships between MITRE ATT&CK data and other useful pieces of threat data.
• Map threat data from internal sources and external sources with MITRE ATT&CK techniques.
• Store historical threat hunting investigations, data and learnings and automatically associate these components.