MITRE ATT&CK

MITRE ATT&CK is a comprehensive knowledge base of adversary tactics, techniques, and procedures based on real-world observations of cyber attacks. It provides a common language and framework for describing how attackers operate — from initial access through persistence, privilege escalation, defense evasion, lateral movement, and data exfiltration.

Security teams use ATT&CK to evaluate their defenses against known attack techniques, identify coverage gaps, and improve detection capabilities. Many security products now map their detection capabilities to ATT&CK techniques, making it easier to understand what threats your tools can and cannot detect.

Why It Matters

Using ATT&CK to evaluate your security controls against real-world attack techniques helps ensure your CMMC implementation actually works — not just on paper, but against the specific methods adversaries use to target defense contractors.