Threat investigation is extended after each simulation exercise, using the basic and forensic artifacts generated after each scenario. According to Microsoft, all simulation plans provided through this project are research-based and decomposed into attacker actions mapped to the MITER ATT & CK framework.
Microsoft uses SimuLand to document preconditions to identify mitigations and attacker paths, facilitate the design and deployment of threat research lab environments, and provide the latest techniques used by attackers. I plan to keep track of it.
“Our goal is to integrate SimuLand with threat research techniques where dynamic analysis is applied to end-to-end simulation scenarios,” wrote Roberto Rodriguez, a threat researcher at MSTIC R & D. I will. Blog post..
- Microsoft assesses whether security teams are prepared for a cyber attack
- Check all news and articles from the latest Security news updates.
Disclaimer: If you need to update/edit/remove this news or article then please contact our support team.