MITRE ATT&CK Framework Training

Live Online & Classroom Enterprise Training

Explains the use of MITRE ATT&CK for understanding adversary tactics and techniques. Focuses on detection mapping, analysis, and threat mitigation.

Looking for a private batch ?

REQUEST A CALLBACK

Enterprise Reporting
Lifetime Access
CloudLabs
24x7 Support
Real-time code analysis and feedback

What is MITRE ATT&CK Framework Training about?

The MITRE ATT&CK Framework course introduces learners to the structure, purpose, and application of the ATT&CK knowledge base for cybersecurity threat modeling and defense. Participants will explore how adversaries behave across various stages of an attack, map threats to ATT&CK tactics and techniques, and leverage the framework to enhance threat intelligence, detection engineering, and red-blue team collaboration. This training empowers cybersecurity professionals to adopt intelligence-driven defense strategies aligned with real-world attack patterns.

What are the objectives of MITRE ATT&CK Framework Training ?

Understand the structure, components, and purpose of the MITRE ATT&CK Framework.
Identify and analyze adversary tactics, techniques, and procedures (TTPs).
Apply ATT&CK for threat hunting, detection, and incident response.
Integrate ATT&CK into security operations, red teaming, and SOC processes.
Use ATT&CK Navigator and related tools for practical cybersecurity defense.

Who is MITRE ATT&CK Framework Training for?

Cybersecurity Analysts and Threat Hunters.
SOC and Incident Response Team Members.
Red Team and Blue Team Professionals.
Security Architects and Engineers.
Cyber Threat Intelligence (CTI) Analysts.

What are the prerequisites for MITRE ATT&CK Framework Training?

Prerequisites:

Basic understanding of cybersecurity concepts and terminology.
Familiarity with common attack methods and defensive tools.
Knowledge of network and endpoint security principles.
Experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) preferred.
Awareness of frameworks like NIST or Cyber Kill Chain (optional but useful).

Learning Path:

Introduction to MITRE ATT&CK and Cyber Threat Frameworks
Tactics, Techniques, and Procedures (TTPs) Explained
Applying ATT&CK for Threat Detection and Hunting
Using ATT&CK for Red/Blue Team Exercises and Gap Analysis
Integrating ATT&CK into Security Operations and Continuous Improvement

Related Courses:

Cyber Threat Intelligence Fundamentals
Red Teaming and Adversary Simulation
SOC Operations and Threat Hunting
Incident Response and Digital Forensics

Available Training Modes

Live Online Training

1 Days

Course Outline Expand All

Expand All

Module 1- Basics - Security Operations Center (SOC)

Complexity and Cyber Security Challenges

What is a SOC?

SOC Tier Model

Cyber Security Incident Response Process

EDR, XDR, SIEM & SOAR

Blue, Red & Purple Teaming

Module 2- Basics - Cyber Threat Intelligence (CTI)

What is a Threat?

Intelligence, Threat Intelligence & Cyber Threat Intelligence (CTI)

What is CTI?

Threat, Vulnerability & Risk

Threat-Informed Defense

Tactics, Techniques & Procedures (TTPs)

IOCs & IOAs

Pyramid of Pain

CTI Sources

Module 3- The MITRE ATT&CK Framework

What is ATT&CK?

Mapping ATT&CK to the Pyramid of Pain

Matrices

Tactics

Techniques

Subtechniques

Tactics, Techniques & Subtechniques

Data Sources

Detections

Mitigations

Groups

Software

Campaigns

Relations

Enterprise Matrix

Evolution of ATT&CK

Module 4- Case Study I - Group APT41 / Winnti

Scenario

Campaigns & The Groups

Tactics, Techniques & Subtechniques

Detections & Mitigations

Pyramid of Pain for the Campaign

Module 5- Operationalizing ATT&CK

Speaking one language

Threat Informed Decision Making

ATT&CK Navigator

Purple Teaming with ATT&CK

Module 6- Other Resources around ATT&CK

MITRE Engenuity Evaluations

Microsoft Digital Defense Report 2023

Module 7- ATT&CK and other cybersecurity frameworks

Diamond Model of Intrusion Analysis

LM Cyber Kill Chain

Module 8- MITRE ATLAS - AI Threats

What is a Large Language Model (LLM)?

What is ATLAS?

Mapping ATLAS to the Pyramid of Pain

Tactics

Techniques

Subtechniques

Tactics, Techniques, Subtechniques

Mitigations

Case Studies

Microsoft Azure Service Disruption

PoisonGPT

ChatGPT Plugin Privacy Leak

ATLAS Matrix

Prompt Injection

Module 9- MITRE D3FEND - Cybersecurity Countermeasures

What is D3FEND?

Mapping D3FEND to the Pyramid of Pain

TTPs in D3FEND

Tactics

Techniques

Subclasses

Artifacts

MITRE D3FEND

Who is the instructor for this training?

The trainer for this MITRE ATT&CK Framework Training has extensive experience in this domain, including years of experience training & mentoring professionals.

Reviews

My outlook on training changed completely after attending SpringPeople BPC training. The content, the trainer and infrastructure at SpringPeople were top notch and perfectly in tune with the industry requirements. Regardless to say, training is now something that I look forward to to. Kudos to everyone at SpringPeople!

Shweta Priya

Sony

I attended the 3-day AngularJs training at SpringPeople. The trainer was an industry veteran with vast experience in the subject. Notably, the hands-on training, and the Q&A session stood out. Overall, I found SpringPeople a great place to learn with excellent facilities and great trainers. Would recommend SpringPeople to my colleagues and friends.

Swati Singh

I attended the training on API Design for Mulesoft. The sessions were well planned and value-laden. I benefited immensely from the hands-on experience enabled through virtual labs. I would like to specifically commend the efficiency of the support team who were always available to resolve my concerns.

Nikhil Kohli

Stryker

I attended the jQuery training batch, conducted by Mr. Vijay, an SME who did a thorough coverage of all the essentials. He took us through concepts such as jQuery animations, event handlers, plugins, and jQuery-UI by small programs, very easily. The sessions were useful and well structured. By the end of the training, I was well equipped to develop a SPA on Product Management System. Overall, the learning experience at SpringPeople was great!

Heena Rajan

Mindtree