使用 MITRE ATT&CK 评估和改进防御.pdf

《使用 MITRE ATT&CK 评估和改进防御.pdf》由会员分享，可在线阅读，更多相关《使用 MITRE ATT&CK 评估和改进防御.pdf（87页珍藏版）》请在三个皮匠报告上搜索。

1、#CiscoLive#CiscoLiveMike McPhee,Multi-Domain Cybersecurity ArchitectBRKSEC-2227A free and open approach!Evaluating and Improving Defenses with MITRE ATT&CK 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveEnter your personal notes hereCisco Webex App Questions?Use Cisco Web

2、ex App to chat with the speaker after the sessionFind this session in the Cisco Live Mobile AppClick“Join the Discussion”Install the Webex App or go directly to the Webex spaceEnter messages/questions in the Webex spaceHowWebex spaces will be moderated by the speaker until June 9,2023.12343https:/ 2

3、023 Cisco and/or its affiliates.All rights reserved.Cisco PublicBRKSEC-22273 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveAbstractSecurity architectures can pose complexity and cast doubt.How can we be certain that the solutions we have acquired are adequate?How can we

4、know they are configured properly to cover the many vectors of attack?Cisco and much of the industry have taken to using frameworks like MITREs Adversarial Tactics,Techniques,and Common Knowledge Database(ATT&CK)to help objectively assess those solutions and their coverage of the attackers than an e

5、nvironment is most likely to encounter.In this session,participants will:Discover the benefits of learning from the mistakes of othersLearn and see how to use MITRE ATT&CK to evaluate their blind spotsSee demonstrations of Coverage Mapping,Orbital Scanning,and MITRE Caldera Use!BRKSEC-22274Agenda 20

6、23 Cisco and/or its affiliates.All rights reserved.Cisco PublicIntroductionCTI&ATT&CK PrimerKnow Your EnemyKnow YourselfTrust but VerifyFocus on Fixes&IterateConclusionBRKSEC-22275 2023 Cisco and/or its affiliates.All rights reserved.Cisco Public#CiscoLiveAbout meRochester NY(Garbage Plates and Kris