Three new MITRE ATT&CK tactics have shown up ready to be used for Microsoft Sentinel Hunting and Analytics Rules creation.

Resource Development – The adversary is trying to establish resources they can use to support operations.
Impair Process Control – The adversary is trying to manipulate, disable, or damage physical control processes.
Inhibit Response Function – The adversary is trying to prevent your safety, protection, quality assurance, and operator intervention functions from responding to a failure, hazard, or unsafe state.
=========================
[Want to discuss this further? Hit me up on Twitter or LinkedIn]
[Subscribe to the RSS feed for this blog]
[Subscribe to the Weekly Microsoft Sentinel Newsletter]
[Subscribe to the Bi-Weekly Defender for Cloud Newsletter]
You must log in to post a comment.