Mitre Att&ck coverage is a utopian vision of compliance promoted all over the place in recent years. I have spent many hours working towards this unicorn target and here I present you the results of my efforts.
That is, if you want to do it right, you need to think in a context of the whole attack surface, split into many subtleties, nitpicking things you know and don’t know, and so on and so forth.
I called it… you know what:
The organization-specific domin&trix that will work for your org will be different. But now at least you know what direction to take. AKA Run and Hide 🙂