Attack and defense techniques

Cybersecurity Know-How

Conclusions

MITRE ATT&CK and D3FEND knowledge bases provide you with comprehensive insights into cybersecurity techniques. You can use these databases as a foundation for securing your enterprise IT infrastructure or simply as a reference for the next capture-the-flag event. If you find something missing in the knowledge databases, you can contribute content for future versions. In this way, expert knowledge can be bundled and made available to as many companies as possible.

Infos

ATT&CK: https://attack.mitre.org
Lockheed Martin Cyber Kill Chain: https://www.lockheedmartin.com/en-us/capabilities/cyber/cyber-kill-chain.html/
Phishing for Information technique: https://attack.mitre.org/techniques/T1598/
"Hardening Network Systems with DNS" by Matthias Wubbeling, ADMIN , issue 66, 2021, https://www.admin-magazine.com/Archive/2021/66/Hardening-network-services-with-DNS
D3FEND: https://d3fend.mitre.org
ATT&CK STIX data: https://github.com/mitre-attack/attack-stix-data/

The Author

Dr. Matthias Wübbeling is an IT security enthusiast, scientist, author, consultant, and speaker. As a Lecturer at the University of Bonn in Germany and Researcher at Fraunhofer FKIE, he works on projects in network security, IT security awareness, and protection against account takeover and identity theft. He is the CEO of the university spin-off Identeco, which keeps a leaked identity database to protect employee and customer accounts against identity fraud. As a practitioner, he supports the German Informatics Society (GI), administrating computer systems and service back ends. He has published more than 100 articles on IT security and administration.

« Previous 1 2