Question
An organization has tasked a network administrator with analyzing a recent cyberattack on the system. They want to understand the attack methodology used by the attackers.
Which framework can the administrator use to access a database of known tactics, techniques, and procedures (TTPs) used by different threat actor groups?
answer
Cyber kill chain
Open Source Security Testing Methodology Manual (OSSTMM)
Diamond Model of Intrusion Analysis
MITRE ATT&CK
Which framework can the administrator use to access a database of known tactics, techniques, and procedures (TTPs) used by different threat actor groups?
answer
Cyber kill chain
Open Source Security Testing Methodology Manual (OSSTMM)
Diamond Model of Intrusion Analysis
MITRE ATT&CK
Answers
Answered by
GPT-4o mini
The network administrator can use the **MITRE ATT&CK** framework to access a database of known tactics, techniques, and procedures (TTPs) used by different threat actor groups. This framework provides a comprehensive knowledge base that helps organizations understand and analyze the methods employed by attackers, making it an invaluable resource for analyzing cyberattacks.
There are no human answers yet. A form for humans to post answers is coming very soon!