Jan 26 · 10 min read · Trong các cuộc tấn công mạng hiện đại, đặc biệt là các chiến dịch lateral movement và post-exploitation trong môi trường Active Directory, attacker hiếm khi “tự viết lại bánh xe”. Thay vào đó, họ tận dụng những bộ công cụ mã nguồn mở đã được kiểm chứ...
Join discussion
Dec 16, 2025 · 4 min read · L'hiver est arrivé pour la cybersécurité. Si vous pensiez que les évaluations MITRE ATT&CK n'étaient qu'une simple formalité administrative, détrompez-vous. L'édition 2025, baptisée non sans humour "Game of Clones" par les chercheurs de Sophos X-Ops,...
Join discussion
Mar 5, 2025 · 8 min read · When I first started studying for my GIAC certifications, particularly during the SEC 504 course Hackers, Tools, and Incident Handling, I was intrigued and overwhelmed by the depth and constant evolution of adversary behaviors. We focused heavily on ...
Join discussion
Sep 8, 2024 · 1 min read · Lets understand MITRE ATT&CK framework in simple way. What is MITRE ATT&CK ? It was developed and released by MITRE Corporation.A non-profit organization in 2015.Acronym ATT&CK stands for Adversarial Tactics, Techniques and Common Knowledge.It acts a...
Join discussionJul 18, 2024 · 3 min read · In today's digital world, cyberattacks are a constant threat. They can target individuals, businesses, and even critical infrastructure. As cyberattacks evolve and become more sophisticated, security professionals need powerful tools to combat them. ...
Join discussion
May 4, 2023 · 1 min read · MITRE ATT&CK is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. MITRE Attack Navigator is a web-based tool for annotating and exploring ATT&CK matrices. It can be used to visualize defensive ...
Join discussion
Oct 4, 2022 · 3 min read · Recent breach on Uber proves costly and re ignited the need for zero trust approach in rapidly evolving technology space. Looks like Uber got used to these breaches, reputational damages, heavy penalties(Uber breaches Article link). But how these com...
Join discussion
Aug 21, 2022 · 1 min read · My writings on use case of MITRE that I send to cdef.id for their (supposedly) quarterly bulletin. This would be the second time cdef published my writings (check out the first one over here). The bulletin can be accessed [here](writings/CDEF Buleti...
Join discussion
