What Is the ATT&CK Framework?

This chapter will outline the evolution of the ATT&CK Framework and the various different high-level configurations for types of systems (i.e., cloud, mobile, Windows, etc.). It will also be the first introduction to related use cases. We will cover the following topics:

  • A brief history and evolution of ATT&CK
  • Overview of the various ATT&CK models

A brief history and evolution of ATT&CK

The ATT&CK Framework is obviously the main portion of the book, so let’s start with the basics and learn about the history, purpose, categories, and overview of different models within this chapter.

The MITRE ATT&CK Framework was founded in 2015. It started off as a total of 9 tactics and 96 techniques and quickly gained traction ...

Get Aligning Security Operations with the MITRE ATT&CK Framework now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.