Center for Threat-Informed Defense:
Our Work

Collaborative R&D in the Public Interest

Our Research Approach

Together with Participant organizations, we cultivate solutions for a safer world and advance threat-informed defense with open-source software, methodologies, and frameworks. By expanding upon the MITRE ATT&CK knowledge base, our work expands the global understanding of cyber adversaries and their tradecraft with the public release of data sets critical to better understanding adversarial behavior and their movements.

A white water lily floating on a blue background.

Center For Threat-Informed Defense Project

OceanLotus Adversary Emulation Plan

October 9, 2023

Silhouette of mountain climber at summit helping climber below climb a rope .

Center For Threat-Informed Defense Project

Summiting The Pyramid

September 10, 2023

two yellow cable cars at station berlin Alexanderplatz

Center For Threat-Informed Defense Project

THREAT REPORT ATT&CK MAPPER (TRAM)

August 24, 2023

A group of people collaborating on a white board using the ATT&CK Workbench.

Center For Threat-Informed Defense Project

ATT&CK Workbench

August 15, 2023

Blueprints

Center For Threat-Informed Defense Project

CTI Blueprints

Gray puzzle pieces against a gray background with a glowing blue piece connecting them

Center For Threat-Informed Defense Project

ATT&CK Integration into VERIS

A blue cloud defending IaaS.

Center For Threat-Informed Defense Project

Defending IaaS with ATT&CK

November 16, 2022

An image of a road with arrows pointing in different directions.

Center For Threat-Informed Defense Project

Attack Flow

October 27, 2022

A person using a laptop with security icons on it for micro emulation plans.

Center For Threat-Informed Defense Project

Micro Emulation Plans

September 15, 2022

An image of a cloud with a blue light emitting analytics data.

Center For Threat-Informed Defense Project

Cloud Analytics

An image of a cloud with lines and dots, illustrating the Google Cloud Platform.

Center For Threat-Informed Defense Project

Security Stack Mappings – Google Cloud Platform

Top ATT&CK Techniques: Where do I start?

Center For Threat-Informed Defense Project

Top ATT&CK Techniques

A 3d model of a flow chart with colored arrows.

Center For Threat-Informed Defense Project

Attack Flow v1

A map displaying the ecosystem's sightings.

Center For Threat-Informed Defense Project

Sightings Ecosystem

February 23, 2022

A man in a suit is pointing at a group of people in the Insider Threat TTP Knowledge Base.

Center For Threat-Informed Defense Project

Insider Threat TTP Knowledge Base

February 17, 2022

An aerial view of a bridge over water.

Center For Threat-Informed Defense Project

NIST 800-53 Control Mappings

January 13, 2022

Mapping ATT&CK to CV techniques and tactics.

Center For Threat-Informed Defense Project

Mapping ATT&CK to CVE for Impact

October 21, 2021

A red tram traveling down a city street.

Center For Threat-Informed Defense Project

Threat Report ATT&CK Mapper (TRAM) v1

September 30, 2021

An image of a world map with a network of lines.

Center For Threat-Informed Defense Project

Security Stack Mappings – Amazon Web Services

September 21, 2021

A white jigsaw puzzle with a missing piece on a blue background.

Center For Threat-Informed Defense Project

ATT&CK Integration into Veris v1

August 26, 2021

A network of dots and lines on a dark background.

Center For Threat-Informed Defense Project

Atomic Data Sources

August 19, 2021

An aerial view of a bridge over a body of water.

Center For Threat-Informed Defense Project

Security Stack Mappings – AZURE

Two business people standing in front of a wall with sticky notes.

Center For Threat-Informed Defense Project

ATT&CK Workbench v1

Many containers are lined up in a parking lot.

Center For Threat-Informed Defense Project

ATT&CK for Containers

An image of a hallway in a data center.

Center For Threat-Informed Defense Project

MenuPass Adversary Emulation Plan

February 4, 2021

A blue sky with white clouds in the background.

Center For Threat-Informed Defense Project

ATT&CK for Cloud

December 10, 2020

Pathfinder - screenshot.

Center For Threat-Informed Defense Project

CALDERA Pathfinder

October 13, 2020

A woman is pointing at a computer at a bar.

Center For Threat-Informed Defense Project

FIN6 Adversary Emulation Plan

September 15, 2020