Danielle Wood, Senior Director of Partner Service Delivery, has 30+ years of technology industry experience. During the last 14 years, she has provided forensics and incident response support for US Federal and state organizations and as well as Fortune and Global 100 companies.
We go into some of the methodology of EDR and we analyze “testing tools" to demonstrate the flaws in their use and explain why the results are unreliable when pitted against a modern EDR system...
April 21, 2021 / 9 minute read
"Win as One” means we succeed or fail as a team, regardless of gender identity, sexual orientation, religion, or race. I am inspired every day by this approach and the modeling of it by our management team...
March 10, 2021 / 2 minute read
Though AEPs are especially important when testing and building a strong defense, they are often overlooked for TTPs by security practitioners versed in the “trench warfare” of day-to-day security operations.
June 8, 2020 / 2 minute read
One could argue that, if you can detect all the TTPs in ATT&CK, you should also be able to defend against all of the adversaries in ATT&CK. While technically true, many TTPs are not inherently malicious.
June 1, 2020 / 2 minute read
We share five steps necessary for creating a defensive gap assessment plan with MITRE ATT&CK. Combining TTPs with adversary emulation plans, this white paper gives you background to build threat hunting and red teaming programs based on the MITRE ATT&CK framework, with trackable, actionable results.
February 21, 2019 / 4 minute read
