And here is where all of you are missing the point. The point is not that the fr... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		galacticaactual on June 14, 2021 \| parent \| context \| favorite \| on: Infosec Core Competencies And here is where all of you are missing the point. The point is not that the framework is one of competencies. The framework LITERALLY describes attacks happening all day, every day, allowing one to conceptualize second order controls and build competency around engineering defenses. You're telling me it's not useful for a security engineer to learn how a first stage payload drops and pulls it's second stage post-exploitation kit, or what post-exploitation vs. pre-exploitation even means?

tptacek on June 14, 2021 [–]

I wrote something here, but decided it was coming across way to snotty and thought better of it.

Suffice it to say, I'm an appsec person, by way of an earlier career in vulnerability research, and ATT&CK is not a meaningful part of my field.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact