cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

MITRE ATT&CK Technique Coverage

Bob_Bruce
Senior Member

‎Jan 20 2022 08:20 AM

‎Jan 20 2022 08:20 AM

MITRE ATT&CK Technique Coverage

Hi All,

I have been mapping our capabilities to the ATT&CK framework to be able to display coverage and where hot spots may exist. I am having a very difficult time finding any reference to what techniques 365 Defender covers. 

Does anyone know of a way to get this list from the console? I can export the alerts that have fired but I'm looking for a list of all that "could" fire, if that makes sense.

Thanks

565 Views
0 Likes
1 Reply
Reply
1 Reply
ReganDangerCarey

‎Apr 28 2022 04:53 PM

‎Apr 28 2022 04:53 PM

Re: MITRE ATT&CK Technique Coverage

I'm also interested and having a hard time finding this information. The incidents that come across into Sentinel also don't carry over the MITRE fields, so we can't even query based on that.
0 Likes
Reply