Tactics, Techniques, and Procedures (TTPs) is a comprehensive description of a cyber actor's behavior.
- Tactic: the highest-level description of the cyber actor’s behavior.
- Technique: gives a more detailed description of behavior in the context of a tactic.
- Procedure: an even lower-level, highly detailed description in the context of a technique.
A good threat intelligence will provide TTPs, so the reader has a detailed understanding of the cyber attack. Then, the reader will be able to take right defensive measures.
*Reference: tactics, techniques, and procedures (TTP) - nist.gov
*Image courtsey of Pixabay
*Reference: tactics, techniques, and procedures (TTP) - nist.gov
*Image courtsey of Pixabay
Related Post
Products & Services
6.13.2022
What is Cyber Kill Chain? Why Does It Matters?
threat hunting, cyber threat intelligence
Products & Services
5.30.2022
What is the Diamond Model of Intrusion Analysis? Why Does It Matter?
threat hunting, cyber threat intelligence
Products & Services
5.23.2022
What is Cyber Threat Intelligence (CTI)? Why Does It Matter?
cyber threat intelligence, threat hunting