Extending ATT&CK With MITRE Engenuity’s ATT&CK Workbench

September 29, 2021 2:00 pm - 2:30 pm

Bookmark and Share

Jon Baker
Richard Struse

For far too long, cyber defenders have struggled to integrate their organization’s TTPs and local knowledge of adversaries with the public ATT&CK knowledge base. Enter the ATT&CK Workbench. This easy-to-use open-source tool allows organizations to manage and extend their own local version of ATT&CK and keep it synchronized with the ATT&CK knowledge base. Jon Baker and Richard Struse from the Center for Threat-Informed Defense demonstrate how users can explore, annotate, extend, and share extensions of their own instances of the MITRE ATT&CK knowledge base facilitating a greater level of collaboration than previously possible.