Release of Azure Threat Research Matrix!
Current problem: When performing an offensive security assessment, it’s common to find the assessment team attribute their actions to the MITRE ATT&CK knowledge base. /Thread #Azure
They do that so high-level stakeholders can visually see what techniques were successful and administrators & defenders can understand the techniques that were performed to remediate or defend against them in the future.
#Azure #AI #Python #MachineLearning
However, the commonly utilized MITRE knowledge base lacks formal documentation of Azure or AzureAD-related tactics, techniques, or procedures (TTPs) that assessment teams can attribute to.
#Azure #Microsoft #AzureSQL #Analytics #Cybersecurity #DataScience #Cloud
Over the past year, Microsoft has worked with some of the top Azure security researchers to create the Azure Threat Research Matrix (ATRM).
#Azure #Cloud #Web3 #bigdata #IoT
#Azure Threat Research Matrix provides details on the tactics & techniques a potential adversary may use to compromise an Azure Resource or Azure Active Directory.
#AI #ATTACK #MITRE
So, what is Azure Threat Research Matrix (#ATRM)?
It is a knowledge base built to document known TTPs within Azure and Azure AD. The goal of ATRM is:
- To give security professionals an easily viewable framework to better visualize TTPs within Azure & Azure AD.
- Educate professionals about the potential configuration risks that accompany Azure & Azure AD when not following best practices.
See the current ATRM here: https://microsoft.github.io/Azure-Threat-Research-Matrix/