Use the DeTT&CT framework to assess TTP coverage, perform gap analysis, and prioritize detection engineering efforts
Hadn't seen the detect framework before good stuff
Mapping Windows Audit Log Settings to MITRE Data Sources for Rabobank-CDC DeTT&CT
Hadn't seen the detect framework before good stuff