Sign up to save your podcasts
Or
Share AttackIQ Purple Hats 2022: Using DeTTECT and the MITRE ATT&CK Framework
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
AttackIQ Purple Hats 2022: Using DeTTECT and the MITRE ATT&CK Framework
Are you capturing the right logs? Are your logs complete? Would you be able to detect the next Solorigate attack? These questions may keep you awake at night. But using DeTT&CT and the MITRE ATT&CK Framework can help you understand where you need to shore up your logging. Let me show you how!
In this session, we'll discuss why the ATT&CK Framework is important for threat detection. Then we'll dig into how you can use DeTTECT to identify the areas of your environment where your logging may not be comprehensive enough to catch the threats in ATT&CK. It's a fun exercise and very visual. Best of all, I'll walk you through the steps you'll need to perform to set this up on your own.
Speaker:
David Branscome, Microsoft
View all episodes
By Think Bad, Do Good PodcastAre you capturing the right logs? Are your logs complete? Would you be able to detect the next Solorigate attack? These questions may keep you awake at night. But using DeTT&CT and the MITRE ATT&CK Framework can help you understand where you need to shore up your logging. Let me show you how!
In this session, we'll discuss why the ATT&CK Framework is important for threat detection. Then we'll dig into how you can use DeTTECT to identify the areas of your environment where your logging may not be comprehensive enough to catch the threats in ATT&CK. It's a fun exercise and very visual. Best of all, I'll walk you through the steps you'll need to perform to set this up on your own.
Speaker:
David Branscome, Microsoft