Our Work

Our Research Approach

Collaborative R&D in the Public Interest

Together with Participant organizations, we cultivate solutions for a safer world and advance threat-informed defense with open-source software, methodologies, and frameworks. By expanding upon the MITRE ATT&CK knowledge base, our work expands the global understanding of cyber adversaries and their tradecraft with the public release of data sets critical to better understanding adversarial behavior and their movements.

Feb 2021

Menupass Adversary Emulation Plan

menuPass is a threat group that has been active since at least 2006. Individual members of menuPass are known to have acted in association with …

Continue reading

Dec 2020

ATT&CK for Cloud

This project refined and expanded MITRE ATT&CK’s coverage of adversary behaviors in cloud environments. Through our research, we refactored …

Continue reading

Oct 2020

Caldera Pathfinder

This open-source CALDERA plugin helps you understand what a vulnerability exposes to an adversary and what potential destructive paths an …

Continue reading

Sep 2020

FIN6 Emulation Plan

FIN6 is a cyber-crime group that has stolen payment card data and sold it for profit on underground marketplaces. This group has aggressively …

Continue reading

Categories

Tags