Attack & Detect Assessment

An Attack & Detect Assessment is a collection of, highly portable detection tests mapped to MITRE ATT&CK®. This gives defenders a highly actionable way to immediately start testing their defenses against a broad spectrum of attacks.

REALISTIC PERSPECTIVE

A realistic perspective on the effectiveness of defenses require realistic test cases

IDENTIFY THE GAPS IN YOUR DETECTION

Identify weak or insufficient defense mechanisms

TRAIN STAFF

Provide the IT security organization with a first-hand experience of getting and reacting to alerts

CUSTOMER VALUE

DELIVERABLE

At the end of the simulation the company will receive a full report containing an executive summary and details on the attack path taken by Banshie.

In addition to this the company will receive a full overview of the actions performed by Banshie mapped to the MITRE ATT&CK framework. These mappings can be used  as part of the MITRE ATT&CK Service or internally to map out and document areas of improvement against future threats.

Banshie will also provide a full description and thought process behind the attack and as well as key areas of improvement. The end deliverable will contain at least the following:

  • Executive Summary

  • Details of triggered TTPs

  • Overview of detected/not detected usecases

  • MITRE ATT&CK Mapping

  • Exercise walkthrough with blue team.

METHODOLOGY

In an attack simulation the company will test their defenses and detection capabilities.

  1. Select tests

  2. Execute Test

  3. Collect Evidence

  4. Develop Detection

  5. Measure Progress

One of the goals is to try to measure your coverage/capabilities against the ATT&CK Matrix and to identify where you may have gaps.

Ready to get started?

Our security experts are standing by to help you with an incident or answer questions about our consulting and managed detection and response services.

Banshie has a wide skillset and many years of experience in penetration testing and exploit development and are standing by to help you