We added support for ATT&CK ICS to DeTT&CT :-) Thanks to the financial sponsorship of the Cyber Security Sharing & Analytics (cssa.de). The full changelog of v1.6.0 can be found here: github.com/rabobank-cdc/D…

New blog post! ☁ DeTT&CT : Mapping detection to MITRE ATT&CK | by Renaud Frère wp.me/p84lDr-2Eh Interested to improve your SOC detection and visibility coverage? Map your detection and log sources to MITRE ATT&CK using DeTT&CT ! #nviso #infosec #SOC #MITRE #BlueTeam

Do you want to know more on MITRE ATT&CK? Or do you want to take the next steps in improving your cyber defense skills? We provide a 2 day training on MITRE ATT&CK and DeTT&CT and we will learn you everything on this topic. Amsterdam 16+17 NOV 2022 siriussecurity.nl/training

The MITRE ATT&CK framework tells you everything on adversary behaviour, but did you know that you can also use it to measure how good your SOC is in detecting adversaries? Find out how in our two-day training in November! siriussecurity.nl/training

ATT&CK can be overwhelming, with a total of 577 (sub-)Techniques. Our ATT&CK Training guides you via our Maturity Model to succeed in enhancing your Cyber Defences. More info and to sign-up: mbsecure.nl/training

We just released a new version of DeTT&CT including ATT&CK Mobile support! Thanks to the Dutch National Police who sponsored this! Checkout this new version! github.com/rabobank-cdc/D…

Volgende #DutchSecMeetup: 22 november 👉 Ruben Bouman "Automating ATT&CK coverage" 👉 Pouyan Khabazi | MVP #MVP "Secure development lifecycle" 💙 Meld je gratis aan: meetup.com/microsoft-secu…

Tonight at #dutchsecmeetup session by Ruben Bouman about ‘Automating ATT&CK coverage with DeTT&C’ hosted at @UnicaNL i #Hoevelaken dettectinator for automated import from your SIEM like @azure #sentinal or Splunk

This is my account on Mastodon - infosec.exchange/@rubinatorz - verified by Twittodon.com

I get a lot of questions on ATT&CK&DeTT&CT, want to mention that we provide training on this topic. Interested? Let us know on siriussecurity.nl/training

2️⃣5️⃣ days of techniques🎄 1️⃣- T1480 is restricting payload exec based on matching expected traits of the victim, maybe less relevant to defend vice being insightful for CTI & annoying for RE Seeing this more in red team tools too 🦺 attack.mitre.org/techniques/T14…

2️⃣- Did you know that writing malware is a technique❓ T1587.011 isn't one to immediately defend (we'll eventually get to more of those💙), but artifacts of this technique can highlight trends as well as insights into adversary operations🔭👀🔨 attack.mitre.org/techniques/T15…

Our Christmas present for the ATT&CK community :-) DeTT&CT now supports ATT&CK Campaigns. Happy holidays🎄🎅🌟 github.com/rabobank-cdc/D… #ATTACK

Time for another present 🎄 A new release of our #Dettectinator tool! This version supports data source plugins and we already added a couple to the box! We also included 2 new technique plugins and some other improvements and fixes. Unwrap it here 🎁: github.com/siriussecurity…

New blog post! Title: DeTT&CT: Automate your detection coverage with dettectinator | by Renaud Frère Link: wp.me/p84lDr-3zo #infosec #BlueTeam #MITRE #detection

We created a new release of Dettectinator. This is our toolkit for automating large parts of the MITRE ATT&CK mapping process with DeTT&CT. We added support for Group YAML files and plugins to read CTI reports. Checkout our Github site: github.com/siriussecurity…

DeTT&CT now supports Mobile 📱 data sources 🥳 which are introduced in version 13 of MITRE ATT&CK 🤩 github.com/rabobank-cdc/D…

We updated DeTT&CT and Dettectinator to support the new MITRE ATT&CK TAXII server and to support the new ATT&CK v16.1 version. Checkout github.com/rabobank-cdc/D… and github.com/siriussecurity… for the new releases.