all InfoSec news
Enhancing the STIX Representation of MITRE ATT&CK for Group Filtering and Technique Prioritization. (arXiv:2204.11368v2 [cs.CR] UPDATED)
April 27, 2022, 1:20 a.m. | Mateusz Zych, Vasileios Mavroeidis
cs.CR updates on arXiv.org arxiv.org
In this paper, we enhance the machine-readable representation of the ATT&CK
Groups knowledge base provided by MITRE in STIX 2.1 format to make available
and queryable additional types of contextual information. Such information
includes the motivations of activity groups, the countries they have originated
from, and the sectors and countries they have targeted. We demonstrate how to
utilize the enhanced model to construct intelligible queries to filter activity
groups of interest and retrieve relevant tactical intelligence.
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Cyber Security Cloud Solution Architect
@ Microsoft | London, London, United Kingdom
Compliance Program Analyst
@ SailPoint | United States
Software Engineer III, Infrastructure, Google Cloud Security and Privacy
@ Google | Sunnyvale, CA, USA
Cryptography Expert
@ Raiffeisen Bank Ukraine | Kyiv, Kyiv city, Ukraine
Senior Cyber Intelligence Planner (15.09)
@ OCT Consulting, LLC | Washington, District of Columbia, United States