MITRE ATT&CK matrix is an invaluable tool for evaluating your current threat-hunting capabilities. Leveraging this tool to identify gaps or limited visibility provides a starting point for teams to test and create new methods to identify malicious activity. This talk will detail the process utilizing the ATT&CK matrix and some of the obstacles encountered.
Learning Objectives: 1: Understand the process utilizing the ATT&CK matrix and some of the obstacles encountered. 2: Learn how to leverage this approach to improve the efficiency of threat hunting. 3: Understand how to leverage the ATT&CK matrix as a means to build and test methods for detecting breaches.
Pre-Requisites: A general understanding of attacker behaviors.