Skip to content

Att&ck

Attack Matrix

Link Notes
MITRE ATT&CK Cloud Matrix
  • Tactics and techniques representing the MITRE ATT&CK Matrix for Enterprise covering cloud-based techniques
  • Covers: Azure AD, Office 365, Google Workspace, SaaS, IaaS
Microsoft DevOps Threat Matrix Different techniques an adversary might use to attack an organization from the initial access phase and forward
Microsoft Kubernetes Attack Matrix An ATT&CK-like matrix comprising the major techniques that are relevant to container orchestration security, with focus on Kubernetes
Microsoft Storage Services Threat Matrix Potential risks that you should be aware of when deploying, configuring, or monitoring your storage environment
Microsoft Azure Threat Research Matrix Conceptualize the known tactics, techniques, and procedures (TTP) that adversaries may use against the Azure platform
MITRE AI Matrix Adversarial Threat Landscape for Artificial-Intelligence Systems
SaaS Attack Matrix A collection of SaaS attack techniques to help defenders understand the threats they face.

Other Frameworks

Link Notes
MITRE Engage A framework for planning and discussing adversary engagement operations
MITRE Security Automation Framework MITRE SAF supports security processes at all stages of the software lifecycle, from planning secure system design to analyzing operational security data.

Articles

Link Notes
The ATT&CK Rainbow of Tactics By adding a color to the tagged events most graphs will become more readable and at the same time show a bit more priority in the investigation of events