Forum Discussion
MITRE ATT&CK Technique Coverage
Hi All, I have been mapping our capabilities to the ATT&CK framework to be able to display coverage and where hot spots may exist. I am having a very difficult time finding any reference to what tec...
Vytas_Boyev
Microsoft
Microsofthttps://github.com/vboyev-MSFT/KQL-queries/blob/main/M365-%20Mitre-chart%20of%20alerts for MDE
Sentinel has a MITRE dashboard https://learn.microsoft.com/en-us/azure/sentinel/mitre-coverage
Sentinel has a MITRE dashboard https://learn.microsoft.com/en-us/azure/sentinel/mitre-coverage
Thanks for that Vytas, the KQL query is a great help to be able to report on what is there.
I think what Bob and I are both looking for is a way of comparing that with what is currently available to ensure everything is configured and switched on in the tenant?
I think what Bob and I are both looking for is a way of comparing that with what is currently available to ensure everything is configured and switched on in the tenant?