From the course: ISC2 Systems Security Certified Practitioner (SSCP) (2024) Cert Prep
Join today to access over 24,900 courses taught by industry experts.
MITRE ATT&CK
From the course: ISC2 Systems Security Certified Practitioner (SSCP) (2024) Cert Prep
MITRE ATT&CK
“
- [Instructor] External frameworks help us better understand the threat environment that we face. One of these frameworks that's widely used is MITRE's ATT&CK Framework. The MITRE Corporation is a nonprofit think tank that performs research and development in a variety of public-private partnerships. Cybersecurity is one of their focus areas. And MITRE's been instrumental in advancing the state of the art for our field for decades. One of their research efforts is the development of the Adversarial Tactics, Techniques & Common Knowledge or ATT&CK Framework. This ATT&CK Framework is a collection of knowledge about attackers gathered from real-world organizations over many years. Let's take a look at the contents of the framework. The most recognizable artifact of the framework is this table of attack techniques. Each column in the table represents a tactic of an attacker, the general strategies that they're trying to pursue.…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download the exercise files for this course. Get started with a free trial today.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Watch this course anytime, anywhere. Get started with a free trial today.
Contents
-
- The goals of information security2m 8s
- (Locked) Confidentiality2m 8s
- (Locked) Integrity3m 6s
- (Locked) Availability1m 46s
- (Locked) Accountability2m 24s
- (Locked) Need to know and least privilege2m 33s
- (Locked) Segregation of duties (SoD)3m 17s
- (Locked) Privacy compliance4m 6s
- (Locked) Employee privacy1m 54s
- (Locked) Ethics1m 34s
-
-
- (Locked) Authentication factors3m 28s
- (Locked) Multifactor authentication2m 35s
- (Locked) Something you have3m 15s
- (Locked) Password authentication protocols3m 10s
- (Locked) SSO and federation3m 34s
- (Locked) Internetwork trust architectures2m 5s
- (Locked) Third-party connections2m 28s
- (Locked) Zero-trust network architectures3m 51s
- (Locked) SAML2m 35s
- (Locked) OAuth and OpenID Connect2m 51s
- (Locked) Device authentication6m 48s
- (Locked)
-
- (Locked) What is vulnerability management?5m 2s
- (Locked) Identifying scan targets4m 28s
- (Locked) Scan configuration5m 22s
- (Locked) Scan perspective4m 26s
- (Locked) SCAP2m 34s
- (Locked) CVSS3m 31s
- (Locked) Interpreting CVSS scores3m 18s
- (Locked) Analyzing scan reports3m 59s
- (Locked) Correlating scan results2m 33s
- (Locked)
-
- (Locked) Build an incident response program4m 13s
- (Locked) Creating an incident response team2m 34s
- (Locked) Incident communications plan2m 44s
- (Locked) Incident detection4m 30s
- (Locked) Escalation and notification2m 30s
- (Locked) Mitigation2m 25s
- (Locked) Containment techniques3m
- (Locked) Incident eradication and recovery5m 37s
- (Locked) Validation2m 24s
- (Locked) Post-incident activities4m 16s
- (Locked) Incident response exercises1m 59s
- (Locked)
-
- (Locked) Conducting investigations4m 8s
- (Locked) Evidence types3m 29s
- (Locked) Introduction to forensics3m 21s
- (Locked) System and file forensics4m 25s
- (Locked) Network forensics4m 16s
- (Locked) Software forensics4m 56s
- (Locked) Mobile device forensics1m 11s
- (Locked) Embedded device forensics2m 33s
- (Locked) Chain of custody1m 52s
- (Locked) Reporting and documenting incidents3m 33s
- (Locked) Electronic discovery (ediscovery)3m 7s
- (Locked)
-
- (Locked) Understanding encryption2m 44s
- (Locked) Symmetric and asymmetric cryptography4m 12s
- (Locked) Goals of cryptography3m 57s
- (Locked) Codes and ciphers3m 1s
- (Locked) Choosing encryption algorithms3m 23s
- (Locked) The perfect encryption algorithm3m 19s
- (Locked) The cryptographic lifecycle2m 31s
- (Locked)
-
- (Locked) Trust models2m 49s
- (Locked) PKI and digital certificates4m 1s
- (Locked) Hash functions7m 28s
- (Locked) Digital signatures3m 50s
- (Locked) Create a digital certificate4m 53s
- (Locked) Revoke a digital certificate1m 41s
- (Locked) Certificate stapling2m 27s
- (Locked) Certificate authorities6m 22s
- (Locked) Certificate subjects3m 33s
- (Locked) Certificate types2m 54s
- (Locked) Certificate formats1m 29s
- (Locked)
-
- (Locked) Routers, switches, and bridges3m 11s
- (Locked) Firewalls6m 17s
- (Locked) Proxy servers2m 46s
- (Locked) Load balancers4m 19s
- (Locked) VPNs and VPN concentrators4m 39s
- (Locked) Network intrusion detection and prevention5m 13s
- (Locked) Protocol analyzers7m
- (Locked) Content distribution networks3m 50s
- (Locked) Traffic shaping and WAN optimization1m 46s
- (Locked) Unified threat management1m 57s
- (Locked)
-
- (Locked) Restricting network access2m 11s
- (Locked) Network access control4m 36s
- (Locked) RADIUS and TACACS3m 41s
- (Locked) Firewall rule management4m 15s
- (Locked) Router configuration security4m 10s
- (Locked) Switch configuration security3m 48s
- (Locked) Maintaining network availability2m 34s
- (Locked) Network monitoring3m 45s
- (Locked) SNMP2m 58s
- (Locked) Isolating sensitive systems2m 1s
- (Locked)
-
- (Locked) Denial of service attacks4m 20s
- (Locked) Eavesdropping attacks4m 12s
- (Locked) DNS attacks3m 39s
- (Locked) Layer 2 attacks2m 5s
- (Locked) Network address spoofing3m 40s
- (Locked) Wireless attacks3m 3s
- (Locked) Propagation attacks4m 22s
- (Locked) Preventing rogues and evil twins2m 52s
- (Locked) Disassociation attacks2m 11s
- (Locked) Understanding Bluetooth and NFC attacks2m 4s
- (Locked)
-
- (Locked) OWASP Top Ten4m 45s
- (Locked) Application security4m 18s
- (Locked) Preventing SQL injection4m 22s
- (Locked) Understanding cross-site scripting3m 14s
- (Locked) Request forgery4m 6s
- (Locked) Defending against directory traversal3m 4s
- (Locked) Overflow attacks3m 20s
- (Locked) Explaining cookies and attachments4m 7s
- (Locked) Session hijacking4m 48s
- (Locked) Code execution attacks2m 44s
- (Locked)
-
- (Locked) Mobile connection methods4m 7s
- (Locked) Mobile device security3m 7s
- (Locked) Mobile device management7m 16s
- (Locked) Mobile device tracking3m 11s
- (Locked) Mobile application management3m 58s
- (Locked) Mobile security enforcement3m 56s
- (Locked) Bring Your Own Device (BYOD)4m 40s
- (Locked) Mobile deployment models2m 59s
- (Locked)
-
- (Locked) What is the cloud?3m 52s
- (Locked) Cloud activities and the Cloud Reference Architecture2m 50s
- (Locked) Cloud deployment models2m 42s
- (Locked) Cloud service categories6m 6s
- (Locked) Virtualization4m 44s
- (Locked) Cloud compute resources7m 43s
- (Locked) Cloud storage2m 59s
- (Locked) Containers1m 54s
- (Locked)