Khondokar Fida Hasan, Hasibul Hossain Shajeeb, Chathura Abeydeera, Benjamin Turnbull, Matthew Warren
ISADM: An Integrated STRIDE, ATT&CK, and D3FEND Model for Threat Modeling Against Real-world Adversaries
https://arxiv.org/abs/2512.18751
ISADM: An Integrated STRIDE, ATT&CK, and D3FEND Model for Threat Modeling Against Real-world Adversaries
https://arxiv.org/abs/2512.18751
December 23, 2025 at 7:07 AM
Khondokar Fida Hasan, Hasibul Hossain Shajeeb, Chathura Abeydeera, Benjamin Turnbull, Matthew Warren
ISADM: An Integrated STRIDE, ATT&CK, and D3FEND Model for Threat Modeling Against Real-world Adversaries
https://arxiv.org/abs/2512.18751
ISADM: An Integrated STRIDE, ATT&CK, and D3FEND Model for Threat Modeling Against Real-world Adversaries
https://arxiv.org/abs/2512.18751
Hasan, Shajeeb, Abeydeera, Turnbull, Warren: ISADM: An Integrated STRIDE, ATT&CK, and D3FEND Model for Threat Modeling Against Real-world Adversaries https://arxiv.org/abs/2512.18751 https://arxiv.org/pdf/2512.18751 https://arxiv.org/html/2512.18751
December 23, 2025 at 6:30 AM
Hasan, Shajeeb, Abeydeera, Turnbull, Warren: ISADM: An Integrated STRIDE, ATT&CK, and D3FEND Model for Threat Modeling Against Real-world Adversaries https://arxiv.org/abs/2512.18751 https://arxiv.org/pdf/2512.18751 https://arxiv.org/html/2512.18751
MITRE has extended its D3FEND framework to Operational Technology (OT)! 🛡️ Funded by the NSA, the new knowledge base provides a standard for defending critical infrastructure and cyber-physical systems. 🏭 #OTsecurity #ICS #D3FEND #Cybersecurity
December 17, 2025 at 10:54 PM
MITRE has extended its D3FEND framework to Operational Technology (OT)! 🛡️ Funded by the NSA, the new knowledge base provides a standard for defending critical infrastructure and cyber-physical systems. 🏭 #OTsecurity #ICS #D3FEND #Cybersecurity
MITRE expands D3FEND cybersecurity ontology to support cybersecurity in OT environments - Industrial Cyber industrialcyber.co/control-devi...
MITRE expands D3FEND cybersecurity ontology to support cybersecurity in OT environments - Industrial Cyber
MITRE announces the expansion of D3FEND cybersecurity ontology to support cybersecurity across OT environments.
industrialcyber.co
December 17, 2025 at 8:12 PM
MITRE expands D3FEND cybersecurity ontology to support cybersecurity in OT environments - Industrial Cyber industrialcyber.co/control-devi...
Next up at 1:00 PM Steve Dyson is presenting Aligning Cyber Defense and Compliance: Leveraging ATT&CK, D3fend, and the Cyber Defense Matrix for Modern Regulatory Readiness" #Streaming #BSidesDE #Streaming https://bit.ly/BSidesDE2025Talks #BSidesDelaware #BSDE2025
Before you continue to YouTube
bit.ly
November 15, 2025 at 5:40 PM
Next up at 1:00 PM Steve Dyson is presenting Aligning Cyber Defense and Compliance: Leveraging ATT&CK, D3fend, and the Cyber Defense Matrix for Modern Regulatory Readiness" #Streaming #BSidesDE #Streaming https://bit.ly/BSidesDE2025Talks #BSidesDelaware #BSDE2025
Looking at the Star Wars story using MITRE ATT&CK & D3FEND combined with Kill Chain and Bow-Tie analysis #BSidesDE https://bit.ly/BSidesDEReg
Security BSides Delaware
Security BSides Delaware is an annual local information security conference built on some of the best talent the industry has to offer.
bit.ly
November 12, 2025 at 5:40 PM
Looking at the Star Wars story using MITRE ATT&CK & D3FEND combined with Kill Chain and Bow-Tie analysis #BSidesDE https://bit.ly/BSidesDEReg
RT to #Vote for "ATT&CK’ing the Death Star while Bow-TIEs D3FEND" #BSidesDE https://bsidesdelaware.com/cfp-voting/ #BSidesDelaware #BSDE2025
CFP Voting -
BSidesDE 2025 CFP status: OPEN CFPs will again be accepted on a rolling basis with public Twitter/Mastodon voting as a guideline for audience interest. Tab 2 submissions have been accepted, the others are waiting for your votes. If you like something vote for it, if you don’t see something you like, get cracking on your CFP …
bsidesdelaware.com
September 18, 2025 at 2:52 PM
RT to #Vote for "ATT&CK’ing the Death Star while Bow-TIEs D3FEND" #BSidesDE https://bsidesdelaware.com/cfp-voting/ #BSidesDelaware #BSDE2025
RT to #Vote for "Aligning Cyber Defense and Compliance: Leveraging ATT&CK, D3fend, and the Cyber Defense Matrix for Modern Regulatory Readiness" #BSidesDE https://bsidesdelaware.com/cfp-voting/ #BSidesDelaware #BSDE2025
CFP Voting -
BSidesDE 2025 CFP status: OPEN CFPs will again be accepted on a rolling basis with public Twitter/Mastodon voting as a guideline for audience interest. Tab 2 submissions have been accepted, the others are waiting for your votes. If you like something vote for it, if you don’t see something you like, get cracking on your CFP …
bsidesdelaware.com
September 15, 2025 at 3:29 PM
RT to #Vote for "Aligning Cyber Defense and Compliance: Leveraging ATT&CK, D3fend, and the Cyber Defense Matrix for Modern Regulatory Readiness" #BSidesDE https://bsidesdelaware.com/cfp-voting/ #BSidesDelaware #BSDE2025
推奨される対策(MITRE D3FEND準拠)
・優先パッチ適用(既知のCVEに対して)
・ACLと管理プレーンの強化(CoPP, VRF分離)
・SNMPv3への移行、v1/v2無効化
・Guest ShellやSmart Installの無効化
・強固な認証管理(PKI/多要素認証、Type 8/6暗号化、デフォルトパスワード排除)
・構成・ログの定期監査(未承認のトンネル、PCAP設定、ACL変更を検出)
・ルーティング/ピアリング監視(不審なGRE/IPsecトンネル、BGP設定の改ざんを警戒)
・優先パッチ適用(既知のCVEに対して)
・ACLと管理プレーンの強化(CoPP, VRF分離)
・SNMPv3への移行、v1/v2無効化
・Guest ShellやSmart Installの無効化
・強固な認証管理(PKI/多要素認証、Type 8/6暗号化、デフォルトパスワード排除)
・構成・ログの定期監査(未承認のトンネル、PCAP設定、ACL変更を検出)
・ルーティング/ピアリング監視(不審なGRE/IPsecトンネル、BGP設定の改ざんを警戒)
August 27, 2025 at 3:54 PM
推奨される対策(MITRE D3FEND準拠)
・優先パッチ適用(既知のCVEに対して)
・ACLと管理プレーンの強化(CoPP, VRF分離)
・SNMPv3への移行、v1/v2無効化
・Guest ShellやSmart Installの無効化
・強固な認証管理(PKI/多要素認証、Type 8/6暗号化、デフォルトパスワード排除)
・構成・ログの定期監査(未承認のトンネル、PCAP設定、ACL変更を検出)
・ルーティング/ピアリング監視(不審なGRE/IPsecトンネル、BGP設定の改ざんを警戒)
・優先パッチ適用(既知のCVEに対して)
・ACLと管理プレーンの強化(CoPP, VRF分離)
・SNMPv3への移行、v1/v2無効化
・Guest ShellやSmart Installの無効化
・強固な認証管理(PKI/多要素認証、Type 8/6暗号化、デフォルトパスワード排除)
・構成・ログの定期監査(未承認のトンネル、PCAP設定、ACL変更を検出)
・ルーティング/ピアリング監視(不審なGRE/IPsecトンネル、BGP設定の改ざんを警戒)
Lol that's a trip. But to be expected. D3fend Boyle Heights as a broad coalition gained national praise & RG caught some of that but DBH included anarchists doing a lot of the organizing and RG did not like the anti-hierachical style & had a shitty Maoist critique of identity politics.
August 21, 2025 at 2:01 AM
Lol that's a trip. But to be expected. D3fend Boyle Heights as a broad coalition gained national praise & RG caught some of that but DBH included anarchists doing a lot of the organizing and RG did not like the anti-hierachical style & had a shitty Maoist critique of identity politics.
COUN7ERとは?
MITRE ATT&CK / D3FEND / CWEなどにマッピングされた、実行可能な対処アクションのデータベース
現在は100以上のエントリを収録
各エントリの構成
・Intended Outcome(狙いと効果)
・Preparation(準備手順)
・Risks(リスクや留意点)
・Guidance(実行ガイド)
・Related Countermeasures(代替手段)
・References(技術的参照)
CISAが脅威インテリジェンスや観測結果に基づいて定期的に更新し、内部TTXによる実効性検証・品質管理が行われています。
MITRE ATT&CK / D3FEND / CWEなどにマッピングされた、実行可能な対処アクションのデータベース
現在は100以上のエントリを収録
各エントリの構成
・Intended Outcome(狙いと効果)
・Preparation(準備手順)
・Risks(リスクや留意点)
・Guidance(実行ガイド)
・Related Countermeasures(代替手段)
・References(技術的参照)
CISAが脅威インテリジェンスや観測結果に基づいて定期的に更新し、内部TTXによる実効性検証・品質管理が行われています。
Eviction Strategies Tool | CISA
www.cisa.gov
July 30, 2025 at 5:24 PM
COUN7ERとは?
MITRE ATT&CK / D3FEND / CWEなどにマッピングされた、実行可能な対処アクションのデータベース
現在は100以上のエントリを収録
各エントリの構成
・Intended Outcome(狙いと効果)
・Preparation(準備手順)
・Risks(リスクや留意点)
・Guidance(実行ガイド)
・Related Countermeasures(代替手段)
・References(技術的参照)
CISAが脅威インテリジェンスや観測結果に基づいて定期的に更新し、内部TTXによる実効性検証・品質管理が行われています。
MITRE ATT&CK / D3FEND / CWEなどにマッピングされた、実行可能な対処アクションのデータベース
現在は100以上のエントリを収録
各エントリの構成
・Intended Outcome(狙いと効果)
・Preparation(準備手順)
・Risks(リスクや留意点)
・Guidance(実行ガイド)
・Related Countermeasures(代替手段)
・References(技術的参照)
CISAが脅威インテリジェンスや観測結果に基づいて定期的に更新し、内部TTXによる実効性検証・品質管理が行われています。
This week in the AppSec News: Visual Studio Code's Workplace Trust, Injured Android an insecure mobile app, Microsoft accidentally signed driver with rootkits, The NSA funds a new sister Matrix to ATT&CK: D3FEND, & "Ransomware: maybe it's you, not them?...
| Details | Interest | Feed |
| Details | Interest | Feed |
Origin
dts.podtrac.com
June 2, 2025 at 8:47 PM
This week in the AppSec News: Visual Studio Code's Workplace Trust, Injured Android an insecure mobile app, Microsoft accidentally signed driver with rootkits, The NSA funds a new sister Matrix to ATT&CK: D3FEND, & "Ransomware: maybe it's you, not them?...
| Details | Interest | Feed |
| Details | Interest | Feed |
Origin
dts.podtrac.com
May 27, 2025 at 9:51 AM
This stuff is so cool #d3fend #MITRE #threatmodeling #defensive #cyber >
d3fend.mitre.org/blog/buildin...
d3fend.mitre.org/blog/buildin...
How to Build D3FEND Graphs with D3FEND CAD
Explore the benefits of cybersecurity modeling using D3FEND CAD. Learn to create structured, insightful graphs that enhance decision-making and analysis.
d3fend.mitre.org
May 19, 2025 at 10:46 PM
This stuff is so cool #d3fend #MITRE #threatmodeling #defensive #cyber >
d3fend.mitre.org/blog/buildin...
d3fend.mitre.org/blog/buildin...
Explore the benefits of cybersecurity modeling using D3FEND CAD. Learn to create structured, insightful graphs that enhance decision-making and analysis. Here's the article: d3fend.mitre.org/blog/buildin...
d3fend.mitre.org/cad/
d3fend.mitre.org/cad/
D3FEND CAD Tool
Cyber Attack-Defense Utility for Capturing Engagements and Understandable Scenarios
d3fend.mitre.org
May 19, 2025 at 9:22 PM
Explore the benefits of cybersecurity modeling using D3FEND CAD. Learn to create structured, insightful graphs that enhance decision-making and analysis. Here's the article: d3fend.mitre.org/blog/buildin...
d3fend.mitre.org/cad/
d3fend.mitre.org/cad/
How to Build D3FEND Graphs with D3FEND CAD
D3FEND is a framework developed by MITRE to counter adversarial tactics in cybersecurity. The D3FEND CAD tool helps visualize defensive techniques and their relationships to ATT&CK tactics. Below is a detailed guide on building D3FEND graphs using D3FEND…
D3FEND is a framework developed by MITRE to counter adversarial tactics in cybersecurity. The D3FEND CAD tool helps visualize defensive techniques and their relationships to ATT&CK tactics. Below is a detailed guide on building D3FEND graphs using D3FEND…
How to Build D3FEND Graphs with D3FEND CAD
D3FEND is a framework developed by MITRE to counter adversarial tactics in cybersecurity. The D3FEND CAD tool helps visualize defensive techniques and their relationships to ATT&CK tactics. Below is a detailed guide on building D3FEND graphs using D3FEND CAD. URL: d3fend.mitre.org You Should Know: 1. Install Required Tools Before using D3FEND CAD, ensure you have: Python 3.8+ Graphviz (for visualization) …
undercodetesting.com
May 15, 2025 at 9:54 AM
How to Build D3FEND Graphs with D3FEND CAD
D3FEND is a framework developed by MITRE to counter adversarial tactics in cybersecurity. The D3FEND CAD tool helps visualize defensive techniques and their relationships to ATT&CK tactics. Below is a detailed guide on building D3FEND graphs using D3FEND…
D3FEND is a framework developed by MITRE to counter adversarial tactics in cybersecurity. The D3FEND CAD tool helps visualize defensive techniques and their relationships to ATT&CK tactics. Below is a detailed guide on building D3FEND graphs using D3FEND…
How to Build D3FEND Graphs with D3FEND CAD
How to Build D3FEND Graphs with D3FEND CAD
d3fend.mitre.org
April 22, 2025 at 10:24 PM
How to Build D3FEND Graphs with D3FEND CAD