NVD - CVE-2020-11911
Acknowledgments – 2016 | Microsoft® Docs **Bulletin ID** **Vulnerability Title** **CVE ID** **Acknowledgment** **December 2016** [MS16-153](https://go.microsoft.com/fwlink/?linkid=835768) What Is MITRE ATT&CK and How Is It Useful? | From Anomali What Is MITRE ATT&CK™? MITRE introduced ATT&CK (Adversarial Tactics, Techniques & Common Knowledge) in 2013 as a way to describe and categorize adversarial behaviors based on real-world observations. ATT&CK is a structured list of known attacker behaviors that have been compiled into tactics and techniques and expressed in a handful of matrices as well as via STIX/ TAXII. CVE-2020-14664
Feb 09, 2016 · Open Vulnerability and Assessment Language (OVAL®) is a community effort to standardize how to assess and report upon the machine state of computer systems. OVAL includes a language to encode system details, and community repositories of content.
mitre red-team security-automation security-testing mitre-attack adversary-emulation caldera Python Apache-2.0 384 1,831 14 3 Updated Jul 23, 2020 mitre-saf Adversarial Tactics, Techniques & Common Knowledge (ATT&CK) ATT&CK is focused on network defense and describes the operational phases in an adversary’s lifecycle, pre and post-exploit (e.g., Persistence, Lateral Movement, Exfiltration), and details the specific tactics, techniques, and procedures (TTPs) that advanced persistent threats (APT) use to execute their objectives while targeting
NVD - CVE-2020-11911
msm.mitre.org - Making Security Measurable MITRE, in collaboration with government, industry, and academic stakeholders, is improving the measurability of security through registries of baseline security data, providing standardized languages as means for accurately communicating the information, defining proper usage, and helping establish community approaches for standardized processes.. The other activities and initiatives listed GitHub - CVEProject/cvelist: Pilot program for CVE CVE Automation Working Group Git Pilot. The CVE Automation Working Group is piloting use of git to share information about public vulnerabilities. The goal is to learn not only what features are necessary to support the "plumbing" of sending and receiving the data, but also which attributes and metadata are needed in the CVE format to support automation. What is the MITRE ATT&CK Framework? | Digital Guardian Apr 23, 2020