Attack and defense techniques

Cybersecurity Know-How

Conclusions

MITRE ATT&CK and D3FEND knowledge bases provide you with comprehensive insights into cybersecurity techniques. You can use these databases as a foundation for securing your enterprise IT infrastructure or simply as a reference for the next capture-the-flag event. If you find something missing in the knowledge databases, you can contribute content for future versions. In this way, expert knowledge can be bundled and made available to as many companies as possible.

Infos

  1. ATT&CK: https://attack.mitre.org
  2. Lockheed Martin Cyber Kill Chain: https://www.lockheedmartin.com/en-us/capabilities/cyber/cyber-kill-chain.html/
  3. Phishing for Information technique: https://attack.mitre.org/techniques/T1598/
  4. "Hardening Network Systems with DNS" by Matthias Wubbeling, ADMIN , issue 66, 2021, https://www.admin-magazine.com/Archive/2021/66/Hardening-network-services-with-DNS
  5. D3FEND: https://d3fend.mitre.org
  6. ATT&CK STIX data: https://github.com/mitre-attack/attack-stix-data/

The Author

Dr. Matthias Wübbeling is an IT security enthusiast, scientist, author, consultant, and speaker. As a Lecturer at the University of Bonn in Germany and Researcher at Fraunhofer FKIE, he works on projects in network security, IT security awareness, and protection against account takeover and identity theft. He is the CEO of the university spin-off Identeco, which keeps a leaked identity database to protect employee and customer accounts against identity fraud. As a practitioner, he supports the German Informatics Society (GI), administrating computer systems and service back ends. He has published more than 100 articles on IT security and administration.

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy ADMIN Magazine

SINGLE ISSUES
 
SUBSCRIPTIONS
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

comments powered by Disqus