6. MITRE ATT&CK
01 02
03
04
Use Cases
ATT&CK provides a common language
and framework that red teams can use to
emulate specific threats and plan their
operations
Adversary Emulation and
Red Teaming
ATT&CK can be used to assess your
organization’s capabilities and drive
engineering decisions like what tools or
logging you should implement..
Assessment and Engineering
ATT&CK can help cyber defenders
develop analytics that detect the
techniques used by an adversary
Detections and Analytics
ATT&CK gives analysts a common
language to structure, compare, and
analyze threat intelligence
Threat Intelligence
6