271 defences149 crosswalks

D3FENDD3FEND defensive matrix

7 tactics · 271 defensive techniques · 149 defends_against crosswalks to MITRE ATT&CK. Authored by Adam Lundqvist.

TACTICModelHardenDetectIsolateDeceiveEvictRestoreLEVELTechniqueSub-technique
ATT&CK coverage
0
1
2-3
4-5
6+

MODModel0 techniques

HARHarden11 techniques

D3-CDP
Change Default Password
D3-CERO
Certificate Rotation
D3-OTP
One-time Password
D3-PR
Password Rotation
D3-EMH
Electromagnetic Radiation Hardening
D3-RFS
RF Shielding
D3-DRA
Disable Remote Access
D3-BMA
Bus Message Authentication
D3-MBSV
Memory Block Start Validation
D3-NPC
Null Pointer Checking
D3-OLV
Operational Logic Validation

DETDetect0 techniques

ISOIsolate0 techniques

DECDeceive0 techniques

EVIEvict4 techniques

D3-HR
Host Reboot
D3-ER
Email Removal
D3-DKP
Disk Partitioning
D3-DKE
Disk Erasure

RESRestore2 techniques

D3-ULA
Unlock Account
D3-RE
Restore Email
Sourced from MITRE D3FEND ontology. Cross-walks ingested via the D3FEND CSV feed. Curated by Adam Lundqvist, Founder at SQUR.
D3FEND defensive matrix | SQUR Knowledge Base