Attack and Defend Matrix
Comments
 Share
The version of the browser you are using is no longer supported. Please upgrade to a supported browser.Dismiss

 
Comment only
 
 
ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
NOTICE:
2
This project is considered abandoned.
3
If you want to do something with it, cool.
4
I would STRONGLY suggest you look at the newest work by MITRE. Much of this is no longer current.
5
6
7
About this spreadsheet:
8
This spreadsheet should help both attackers (pen testers) and defenders better see their defensive posture.
9
The goal of this project is to provide better security testing with repeatable, impartial, and reliable results.
10
To advance this goal, The Attack and Defend Matrix will hopefully provide a framework which allows both defenders and attackers to critically analyze systems security performance.
11
12
13
Source:
14
For the latest version of this spreadsheet, please visit:
15
https://docs.google.com/spreadsheets/d/1pI-FI1QITaIjuBsN30au1ssbJAZawPA0BYy8lp6_jV8/edit?usp=sharing
16
17
18
Please note:
19
Inline comments are the prefered method for requesting changes.
20
21
22
You can help this project!!
23
Comment on things and I'll adjust them as soon as practical. Please be patient. If you have ideas for tools... other things to add... please create a comment.
24
It's worth repeating... please be patient. This spreadsheet is being heavily updated. Daily for a while. Stay tuned.
25
If you want to contribute, please review the "Help Requests" tab! Leave your comments there please!
26
27
28
Work on deck
29
add scoring (Done: calc sheet & formulas, added delta lookups. Todo: make if statement on test complete) == in progress now
30
default control values -- persistence -- Working on this -- resume row 22
31
32
33
Work yet to do:
34
conditional formatting for answers (can I make color change based on control selection?)
35
add additional tools
36
add additional references
37
default control values -- Priv Escalation
38
default control values -- Defense Evasion
39
default control values -- Credential Access
40
default control values -- Discovery
41
default control values -- lateral movement
42
default control values -- execution
43
default control values -- collection
44
default control values -- exfiltration
45
default control values -- command and control
46
ensure column sizes are consistent on all sheets
47
-- All above are needed for 1.0 status --
48
-- All below are for future releases --
49
Create an exec dashboard tab
50
Create a social engineering version of this spreadsheet
51
Add a suggested remediation tab (this is going to be soooo much work!)
52
create an engagement assist mode (use tags to select techniques to use)
53
54
55
Bucket items (things that don't fit too well in current scorecard -- can you help them find a home?)
56
USB/removable media controls. It could be another host based column, but it protects against only exfiltration, right?
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
Loading...
 
 
 
README
Help Requests
Dependencies
Scorecard Matrix
Revision History
Warnings/Acceptable Use
Calculations Sheet
Acknowledgements