What We Do
How We Do
Get Started

Exposure management services GLOSSARY

What is the MITRE ATT&CK® framework?

The MITRE ATT&CK framework is used by cybersecurity experts and technical security practitioners to map the tactics and techniques used by adversaries based on real-world observations. It contains hundreds of techniques (and sub-techniques) organized across 14 tactics, such as reconnaissance, initial access, execution, defensive evasion, and exfiltration.

Tactics are commonly observed activities or objectives threat actors leverage to exploit your business and provide the context needed when investigating the specific techniques used. Techniques are a combination of procedures and technologies used to achieve the tactic, like harvesting credentials to gain initial access, or disabling defenses to move within your organization with impunity. If tactics represent the “why” for a cyberattack, techniques represent the “how”.

The overall goal of the ATT&CK framework is to develop specific threat models and methodologies so that organizations are better equipped to detect and contain intrusions.

eSentire Exposure Management Services

Take control of cyber risk. eSentire offers multiple Exposure Management Services, tailored to your business needs, to help your organization proactively identify gaps and refine your cybersecurity strategy. This includes a regular cadence of security assessments and testing to continue to strengthen your security posture.

Learn how eSentire Multi-Signal Managed Detection and Response stops threats before they impact your business.