Category

Mappings

Get in Sync with ATT&CK and CTID

By Tiffany Bergeron, Allison Robbins in Blog, Mappings

November 15, 2025

Threat-informed defenders can use ATT&CK Sync and the enhanced Mappings Editor to keep ATT&CK-based tools and mappings current with major changes like ATT&CK v18.

Continue reading

Threat-Informed Defense for the Financial Sector

By Gananand Kini, Tiffany Bergeron in Blog, Mappings

June 16, 2025

The Cyber Risk Institute Profile is a distillation of the NIST Cybersecurity Framework tailored to address the financial services sector’s regulatory environment. Financial institutions, financial services companies, financial firms, and their third-party providers use the CRI Profile …

Continue reading

Threat-Informed Defense for the Financial Sector

in Published Projects, Mappings

June 16, 2025

Connect adversarial threat mitigations to cybersecurity program resources tailored to the financial sector, namely the Cyber Risk Institute Profile.

Continue reading

Prioritize Known Exploited Vulnerabilities

in Published Projects, Mappings

February 13, 2025

Prioritize Known Exploited Vulnerabilities shows defenders how to take a threat informed approach to vulnerability management.

Continue reading

Put Your Money Where Your Adversaries Are: Exploited Vulnerabilities

By Tiffany Bergeron, Mike Cunningham, Suneel Sundar in Blog, Mappings

February 13, 2025

Historically, vulnerability management and threat management have been separate disciplines, but in a risk-focused world, they need to be brought together.

Continue reading

Security Stack Mappings – Hardware-Enabled Defense

in Published Projects, Mappings

January 4, 2025

The Security Stack Mappings – Hardware-Enabled Defense project demonstrates full stack threat-informed defense, from the hardware board to the software bytes.

Continue reading

Stacked Defense from the Hardware Up

By Tiffany Bergeron in Blog, Mappings

January 3, 2025

The Security Stack Mappings – Hardware-Enabled Defense project demonstrates full stack threat-informed defense, from the hardware board to the software bytes.

Continue reading

The Best Defense is a Security Capability Mapped to ATT&CK

By Tiffany Bergeron in Blog, Mappings

December 13, 2024

The Security Stack Mappings – Hardware-Enabled Defense project demonstrates full stack threat-informed defense, from the hardware board to the software bytes.

Continue reading

Security Stack Mappings – Microsoft 365 Mappings

in Published Projects, Mappings

April 17, 2024

The project presents a comprehensive mapping of M365’s native security features against the MITRE ATT&CK® framework, detailing how these capabilities can protect, detect, and respond to cyber threats. By reviewing M365 documentation, the project identifies security actions that can mitigate …

Continue reading

Mappings Explorer

in Published Projects, Mappings

March 27, 2024

Mappings Explorer is a hub for defenders to explore security capabilities mapped to MITRE ATT&CK®. This singular resource enables cyber defenders to understand how security controls and capabilities protect against the adversary behaviors catalogued in the ATT&CK knowledge base. Our mappings …

Continue reading

Categories

Tags