← Home

MITRE ATT&CK

Adversarial Tactics, Techniques, and Common Knowledge

ATT&CK (Adversarial Tactics, Techniques, and Common Knowledge) is MITRE's knowledge base for modeling cybersecurity threats based on real-world incidents. It is specifically designed for threats against industrial control environments rather than IT and explains how attackers infiltrate, operate within, and affect industrial systems.

Organizations can use the framework to map their defenses against known tactics and techniques to understand, detect, and mitigate threats across IT and OT environments. It standardizes threat intelligence, supports realistic attack modeling, and prioritizes defenses that protect critical industrial processes and safety functions. It also integrates with other security frameworks such as ISA/IEC 62443, NIST CSF, CIP, and more.

MITRE ATT&CK ICS Matrix
MITRE ATT&CK ICS Matrix — click to open the live matrix on attack.mitre.org

The ATT&CK Matrix

The ATT&CK matrix is a visual table that organizes tactics and techniques.

The ICS matrix covers twelve tactics including Initial Access, Execution, Persistence, Privilege Escalation, Evasion, Discovery, Lateral Movement, Collection, Command and Control, Inhibit Response Function, Impair Process Control, and Impact.

Official resource: MITRE ATT&CK ICS Matrix


Related Topics