Three New MITRE ATT&CK Tactics to Use for Microsoft Sentinel Hunting and Analytics Rules

Three new MITRE ATT&CK tactics have shown up ready to be used for Microsoft Sentinel Hunting and Analytics Rules creation.

New tactics

Resource Development – The adversary is trying to establish resources they can use to support operations.

Impair Process Control – The adversary is trying to manipulate, disable, or damage physical control processes.

Inhibit Response Function – The adversary is trying to prevent your safety, protection, quality assurance, and operator intervention functions from responding to a failure, hazard, or unsafe state.

=========================

[Want to discuss this further? Hit me up on Twitter or LinkedIn]

[Subscribe to the RSS feed for this blog]

[Subscribe to the Weekly Microsoft Sentinel Newsletter]

[Subscribe to the Bi-Weekly Defender for Cloud Newsletter]

Author