MITRE is a non-profit organization (founded in 1958) whose mission is to “solve problems for a safer world.” This goal is partly achieved by the newly gathered knowledge base: MITRE ATT&CK (Adversarial Tactics, Techniques & Common Kowledge). The platform aims to crystallize the different types of tactics, techniques and procedures (TTPs) that cyber criminals use. This makes it easier for organizations to spot the gaps in their cybersecurity.
MITRE ATT&CK™ is a knowledge base that helps model cyber adversaries’ tactics and techniques – and then shows how to detect or stop them.
Organizations can use the framework to map their own security systems. Although the framework is primarily used to map hostile behavior, modifications also allow enterprises to leverage the framework to develop attack scenarios and train their staff.
ATT&CK provides information on a wide range of actors and groups, including the techniques and tools they are known for, based on open-source reporting. By describing hostile behavior in a standardized way, the ATT&CK knowledge base can be useful in providing intel about cybersecurity threats.
The knowledge base provides a guide that security teams can use to compare existing operational guidelines with the guidelines they use themselves. The purpose of this is to identify strengths and weaknesses in the organization before malicious people can take advantage of them.