What We Do
How we do it
Resources
SECURITY ADVISORIES
May 11, 2022
CVE-2022-26923 - Active Directory Domain Services Elevation of Privilege Vulnerability
THE THREAT Microsoft has disclosed a new vulnerability impacting Active Directory Certificate Services (ADCS) tracked as CVE-2022-26923 (Active Directory Domain Services Elevation of Privilege Vulnerability). If exploited successfully, an authenticated attacker can escalate privileges in environments where ADCS is running on the domain. eSentire is aware of technical details and tooling [2] for…
Read More
View all Advisories →
Company
ABOUT ESENTIRE
About Us
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 1200+ organizations in 75+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Read about how we got here
Leadership Work at eSentire
LATEST PRESS RELEASE
May 17, 2022
Cybersecurity Leader eSentire Continues Its Commitment to Rigorous Security Standards Earning PCI DSS Certification
Waterloo, ON, May 17, 2022 — eSentire, the Authority in Managed Detection and Response (MDR), maintains one of the most secure and robust IT environments of any MDR provider in the industry. To that end, eSentire today announced that it has received the Payment Card Industry Data Security Standard (PCI DSS) certification, considered one of the most stringent and comprehensive payment card…
Read More
Partners
PARTNER PROGRAM
e3 Ecosystem
We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.
Learn more
ECOSYSTEM PARTNER RESOURCES
Apply to become an e3 ecosystem partner with eSentire, the Authority in Managed Detection and Response.
Login to the Partner Portal for resources and content for current partners.
Search
MITRE ATT&CK® FRAMEWORK TOOL

Enhance your risk-based approach to cybersecurity with the MITRE ATT&CK® framework

The ATT&CK framework is challenging for many security leaders to integrate into their broader risk-based strategies. Bridge the gap with our ATT&CK tool and get practical insights to inform your security posture and identify where to improve your cybersecurity defenses.

What Is the MITRE ATT&CK® Framework?

The ATT&CK framework is a curated knowledge base and model for cyber adversary behavior that reflects the phases of an adversary's attack lifecycle and the platforms they are known to target. The tactics, techniques, and procedures (TTPs) are derived from real-world observations of cyberattackers.

Applying the MITRE ATT&CK® Framework to Your Business

Cybercrime is continuously growing and evolving making it more difficult for organizations to defend themselves against cyberattacks. Many security leaders are left wondering how effective their cybersecurity programs are. A risk-based approach to cybersecurity ensures your strategy protects your business’ critical areas. The ATT&CK framework is a globally accessible knowledge base of tactics and techniques based on real-world observations and activity. It contains hundreds of techniques and sub-techniques organized across 14 tactics that provides a foundational guide to help organizations “know thy enemy”. Although the ATT&CK framework is well-known, many cybersecurity leaders aren’t using it due to its complexity. We’re here to help you navigate the ATT&CK framework and apply it to your cybersecurity strategy with insights & research from our Threat Response Unit (TRU). In this tool we share the top tactics and techniques used in cyberattacks in customer environments that our Elite Threat Hunters and SOC Cyber Analysts have contained and remediated on our customers’ behalf. For each tactic, our threat researchers provide tips on how to improve your cybersecurity program and details on how eSentire can help protect your organization.

Explore the MITRE ATT&CK framework

ATT&CK MATRIX TACTIC ESENTIRE COVERAGE

Top Techniques Observed by eSentire Threat Response Unit

Recommended Services

Threat Response Unit Tips To Be More Resilient

Contextualizing the MITRE ATT&CK® Framework for Risk Reduction

Read this report for more research & insights from the eSentire TRU team on how threat actors are taking advantage of weak cyber hygiene, why you should leverage the ATT&CK framework to assess & quantify your cyber risk, and to learn how to reduce your overall business risk.

A risk-based approach to your cybersecurity program should provide deep visibility into your environment with 24/7 threat detection and response

We recommend adopting a risk-based approach to cybersecurity that includes:

  • A comprehensive Vulnerability Management program that includes continuous awareness of the threat landscape, vulnerability scanning to understand which systems are inadvertently exposed, and disciplined patch management.
  • Phishing and Security Awareness Training (PSAT) for all employees to build a culture of cyber resiliency by leveraging a context-relevant training program and driving organizational behavioral change.
  • 24/7 Managed Detection and Response (MDR) with multi-signal attack surface coverage, powered by a strong XDR platform foundation and human expertise, to identify, contain, and respond to threats that bypass traditional security controls.
  • Digital Forensics and Incident Response (DFIR) expertise through the engagement of an incident response provider on retainer who can support with Security Incident Response Planning, and Emergency Preparedness as well as incident response, remediation, digital forensics investigation, root cause analysis and crime scene reconstruction in the event breach.

Ready to get started on your risk-based approach?

We’re here to help! Submit your information and an eSentire representative will be in touch.