Tactics, Techniques, and Procedures (TTPs) is a comprehensive description of a cyber actor's behavior.
- Tactic: the highest-level description of the cyber actor’s behavior.
- Technique: gives a more detailed description of behavior in the context of a tactic.
- Procedure: an even lower-level, highly detailed description in the context of a technique.
A good threat intelligence will provide TTPs, so the reader has a detailed understanding of the cyber attack. Then, the reader will be able to take right defensive measures.
*Reference: tactics, techniques, and procedures (TTP) - nist.gov
*Image courtsey of Pixabay
*Reference: tactics, techniques, and procedures (TTP) - nist.gov
*Image courtsey of Pixabay
Related Post
Products & Services
2022.06.13
What is the Cyber Kill Chain? Why Does It Matter?
threat hunting, cyber threat intelligence
Products & Services
2022.05.23
What is Cyber Threat Intelligence (CTI)? Why Does It Matter?
cyber threat intelligence, threat hunting
ThreatVision 深度介紹
2022.05.30
What is the Diamond Model of Intrusion Analysis? Why Does It Matter?
threat hunting, cyber threat intelligence