7
Common Mistakes with Implementation
Mistakes happen; that’s just a part of life. This chapter will provide an overview of common mistakes I have made in mappings and detections, as well as areas where I’ve seen others make mistakes. That way, you can learn from our shortcomings and implement mappings the right way.
The chapter will cover the following topics:
- Examples of incorrect technique mappings from ATT&CK
- Examples of poor executions with detection creation
Technical requirements
For this specific chapter, no installations or specific technologies are required.
Examples of incorrect technique mappings from ATT&CK
Mistakes happen, and we all know this. It could be an implementation that doesn’t work, a lack of knowledge or direction, ...
Get Aligning Security Operations with the MITRE ATT&CK Framework now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.