Putting MITRE ATT&CK™ into Action with What You Have, Where You Are presented by Katie Nickels
ฝัง
- เผยแพร่เมื่อ 4 ก.ค. 2024
- MITRE ATT&CK™ has become widely adopted in the community as a way to frame adversary behaviors and improve defenses. But how can you use it for your team with what you have, where you are? Katie Nickels will break down the ATT&CK knowledge base so you understand how you can put it into action. She will explain the philosophy and approach behind ATT&CK, then dive into how you can use it, whether you’re a one-person shop or an advanced security operations center. Katie will cover how you can use ATT&CK for detection, threat intelligence, assessments, and red teaming, with a focus on actionable takeaways to help your team move toward a threat-informed defense.
Speaker: Katie Nickels, ATT&CK Threat Intelligence Lead at The MITRE Corporation
Katie Nickels is the ATT&CK Threat Intelligence Lead at The MITRE Corporation, where she focuses on applying cyber threat intelligence to ATT&CK and sharing why that’s useful. She has worked in Security Operations Centers and cyber threat intelligence for nearly a decade, hailing from a liberal arts background with degrees from Smith College and Georgetown University. With more than a dozen publications to her name, Katie has shared her expertise with presentations at BSides LV, the FIRST CTI Symposium, multiple SANS Summits, and other events. She is also a SANS instructor for FOR578: Cyber Threat Intelligence and was a member of the 2019 SANS CTI Summit Advisory Board. Katie was the 2018 recipient of the President's Award from the Women's Society of Cyberjutsu and serves as the Program Manager for the Cyberjutsu Girls Academy.
Follow on Twitter @likethecoins - วิทยาศาสตร์และเทคโนโลยี
Thanks for making this content extremely digestible regardless of individual defender's knowledge and experience level...without the ego typically observed in those with your obvious skillset.
"I found nine."
"Cool."
🤩
Outstanding presentation! You're really good at this!
I took extended notes on it! Congratulations!
Katie ROCKS!
Superb Presentation!
I am learning lot of things from Katie ....thanks 👍
Awesome delivery of the contents :) Love to repeat
Informative presentation, thank you!
Thanks Katie!
Very Informative , thanks !
How we can get this PowerPoint file?
Very helpful video
Thankyou for this! What are the various job titles in a threat hunting team?
Any chance those slides are available to download. Thanks for the video either way 😊
Thanks !!!
That was really enlightening and highlighted some areas I never thought of. Good video
Thanks for this
Lots of great content being shared. Thanks
Very useful...thanks
Thank you very much!
We need to get more people in general into cyber and STEM. No need to just focus on one group.
how will we know this wont be used as wapons and force again
The $whoami had me hooked. She lives in the command line. Haha
Talk starts 1:10
+
just do not understand why she should talks so fast and uncomfortable.... i pretty sure everybody watched her presentaion in youtube has paused for many times, now think about pepople who sitting there..... they saw a presentation with more than a page staff in one page while she is talking like somebody put her in 3X fast option. so in short say, people just get 60 procent of what she said.....
I just think the whole ATT&CK thing is a waste of time. It is never clearly explained, it adds extra administrative overhead to categorise everything... and why are you even doing that? There just doesn't seem to be any real need - you waste time ensuring everything is mapped to umpteen clumsily-named categories when you can just spend the same time actually fixing it?
Nobody has ever been able to sell ATT&CK to me. I have worked at some utterly enormous organisations you have definitely heard of and never actually seen it being used in the wild. Like many other things in InfoSec it appears to be an exercise in making yourself look important while doing absolutely nothing.
Dang dude no chill. Food for thought though. I wonder how much it cost to use ATT&CK.
Finally and glad someone said this. This is of no to very little "practical" use. Knowing "every" single attack technique and strengthening your defenses and detection mechanisms across all layers, for "each" of it will take years. And it will still be a moving target. This is yet another buzzword & hype, which is blindly amplified by many.
Worst or the funny thing is the video title says Putting MITRE ATT&CK™ into '"ACTION" but she is simply reading the slides..lol
Reading the slides is IMPORTANT because the IMPORTANT stuff should be ON the slides, if the slides are done well.
I think it is mainly useful in an educational setting, like for people who are studying for CompTIA certs.
Lot of unnecessary details about her self and very vague reading of the power point. Total waste of time
Dang...she's not having any kids.
LMFAO
Thanks Katie!