Attack Frameworks

Mayank Kumar Prajapati Mayank Kumar Prajapati

Mayank Kumar Prajapati

Cyber Security Professional || CAWASP || CARTP || CRTP || CCNA || Security+ || AZ-500

发布日期: 2021年9月1日
+ 关注

Attackers are becoming more intelligent nowadays. Having understanding of how an attacker or adversary moves forward to exploit a system, helps cyber security experts or threat hunters in attack detection and prevention. There are frameworks which provide insight about the methodology or approach used by the attacker. The two most common among them are MITRE ATT&CK Framework and Cyber Kill Chain. These frameworks helps us to understand the attack vectors an attacker can utilize in order to exploit or penetrate a system.

MITRE ATT&CK Framework

  • It is an US Government sponsored company which focuses on providing attack vector details in order to prevent those.
  • It helps threat hunters to understand the methodology of attacker so that they can investigate the incident or threat in an efficient way.

Cyber Kill Chain

  • It was designed by Lockhead Martin for military to gain information about enemy plans.
  • At that time it was named as kill chain.
  • Later when this concept was implemented in cyber security, it was renamed as "Cyber Kill Chain".
  • Below diagram shows stages involved in cyber kill chain process.

No alt text provided for this image


要查看或添加评论,请登录

Mayank Kumar Prajapati的更多文章

社区洞察

其他会员也浏览了