On March 1st, CISA released DECIDER, a free tool that enables Cyber Security Analyst to "map threat actor behavior to the MITRE ATT&CK framework"
It looks like a very interesting tool that can provide context only by answering questions about the TTPs that are being detected. We plan to do a further analysis of the tool and share our insights in the next couple of days.
You can find more information directly in CISA'S ALERT.
Comments