ATT&CK
MITRE ATT&CKDefinition
MITRE ATT&CK is a globally recognized knowledge base and framework of adversary tactics, techniques, and procedures (TTPs) based on real-world observations of cyberattacks.
Buyer context
MITRE ATT&CK organizes adversary behavior into a matrix of tactics (the 'why' of an attack) and techniques (the 'how'). Security teams use it to assess detection coverage, evaluate SOC maturity, map threat intelligence, and run red team exercises. Many SOC providers reference ATT&CK coverage when describing the threats they can detect and respond to.