M1019 Threat Intelligence Program
A threat intelligence program helps an organization generate their own threat intelligence information and track trends to inform defensive priorities to mitigate risk.
Techniques Addressed by Mitigation
| Domain |
ID |
Name |
Use |
| enterprise |
T1212 |
Exploitation for Credential Access |
Develop a robust cyber threat intelligence capability to determine what types and levels of threat may use software exploits and 0-days against a particular organization. |
| enterprise |
T1211 |
Exploitation for Defense Evasion |
Develop a robust cyber threat intelligence capability to determine what types and levels of threat may use software exploits and 0-days against a particular organization. |
| enterprise |
T1068 |
Exploitation for Privilege Escalation |
Develop a robust cyber threat intelligence capability to determine what types and levels of threat may use software exploits and 0-days against a particular organization. |
| enterprise |
T1210 |
Exploitation of Remote Services |
Develop a robust cyber threat intelligence capability to determine what types and levels of threat may use software exploits and 0-days against a particular organization. |