Three New MITRE ATT&CK Tactics to Use for Microsoft Sentinel Hunting and Analytics Rules

Rod Trent Microsoft Sentinel November 30, 2021November 30, 2021 1 Minute

Three new MITRE ATT&CK tactics have shown up ready to be used for Microsoft Sentinel Hunting and Analytics Rules creation.

Resource Development – The adversary is trying to establish resources they can use to support operations.

Impair Process Control – The adversary is trying to manipulate, disable, or damage physical control processes.

Inhibit Response Function – The adversary is trying to prevent your safety, protection, quality assurance, and operator intervention functions from responding to a failure, hazard, or unsafe state.

=========================

[Want to discuss this further? Hit me up on Twitter or LinkedIn]

[Subscribe to the RSS feed for this blog]

[Subscribe to the Weekly Microsoft Sentinel Newsletter]

[Subscribe to the Bi-Weekly Defender for Cloud Newsletter]

Rod Trent

Tagged
Microsoft Sentinel

Published November 30, 2021November 30, 2021

You must log in to post a comment.

Author