Fortinet black logo

User Guide

Home FortiNDR Cloud User Guide

MITRE ATT&CK

MITRE ATT&CK

The MITRE ATT&CK Matrix dashboard shows detection coverage based on rules authored by FortiGuard Labs.

MITRE ATT&CK is a knowledge base of threat behaviors relied upon by security professionals worldwide. You can map FortiGuard Lab detection rules to MITRE ATT&CK, to enable visibility into the threat coverage provided by FortiNDR Cloud.

The dashboard displays the detection by behavior (behavioral and non-behavioral) and by technique (primary and secondary). The Primary Technique: is what is used to detect the behavior. The Secondary Technique: is not always related to what is seen on the network, but is related to the threat in general. The secondary technique will not be displayed in most instances.

MITRE Attack Matrix

Previous
Next

MITRE ATT&CK

The MITRE ATT&CK Matrix dashboard shows detection coverage based on rules authored by FortiGuard Labs.

MITRE ATT&CK is a knowledge base of threat behaviors relied upon by security professionals worldwide. You can map FortiGuard Lab detection rules to MITRE ATT&CK, to enable visibility into the threat coverage provided by FortiNDR Cloud.

The dashboard displays the detection by behavior (behavioral and non-behavioral) and by technique (primary and secondary). The Primary Technique: is what is used to detect the behavior. The Secondary Technique: is not always related to what is seen on the network, but is related to the threat in general. The secondary technique will not be displayed in most instances.

MITRE Attack Matrix

Previous
Next