Center for Threat-Informed Defense:
Our Work
Collaborative R&D in the Public Interest
Our Research Approach
Together with Participant organizations, we cultivate solutions for a safer world and advance threat-informed defense with open-source software, methodologies, and frameworks. By expanding upon the MITRE ATT&CK knowledge base, our work expands the global understanding of cyber adversaries and their tradecraft with the public release of data sets critical to better understanding adversarial behavior and their movements.

OceanLotus Adversary Emulation Plan

Summiting The Pyramid

THREAT REPORT ATT&CK MAPPER (TRAM)

ATT&CK Workbench

CTI Blueprints

ATT&CK Integration into VERIS

Defending IaaS with ATT&CK

Attack Flow

Micro Emulation Plans

Cloud Analytics

Security Stack Mappings – Google Cloud Platform

Top ATT&CK Techniques

Attack Flow v1

Sightings Ecosystem

Insider Threat TTP Knowledge Base

NIST 800-53 Control Mappings

Mapping ATT&CK to CVE for Impact

Threat Report ATT&CK Mapper (TRAM) v1

Security Stack Mappings – Amazon Web Services

ATT&CK Integration into Veris v1

Atomic Data Sources

Security Stack Mappings – AZURE

ATT&CK Workbench v1

ATT&CK for Containers

MenuPass Adversary Emulation Plan

ATT&CK for Cloud

CALDERA Pathfinder
