Deconstructing The Round 3 MITRE ATT&CK Evaluation

Logo
Presented by

Michael Sentonas (Chief Technology Officer), Andrew Munchbach (Vice President of Sales Engineering)

About this talk

MITRE Engenuity’s ATT&CK Evaluation program represents one of the industry’s most in-depth assessments of how endpoint protection solutions behave when subjected to complex, real-world threats. MITRE Engenuity shares a wealth of data on performance of nearly 30 vendors, but how should we make sense of it all? More importantly, how do security teams find and use this data to stop intrusions before they become a breach? Join CrowdStrike CTO Michael Sentonas and VP of Sales Engineering Andrew Munchbach for a walkthrough of the evaluation, with firsthand insights from the team who executed it. Michael and Andrew will provide an in-depth overview of MITRE’s Round 3 evaluation, what it says about the EDR market, and what it means for the CrowdStrike Falcon platform. Join this call to learn more about: • What the MITRE ATT&CK Evaluation is, and what it can tell us about modern EDR solutions • What a Falcon analyst would experience when faced with an attack like the simulated intrusion by CARBON SPIDER (Carbanak) • How we should interpret the results of ATT&CK Evaluation Round 3, and what important insights we can take away • The key capabilities that are most critical for protecting against similar adversary tradecraft today and tomorrow
Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (188)
Subscribers (32279)
CrowdStrike has redefined security with the world’s most advanced cloud-native platform for protecting critical areas of risk — endpoints and cloud workloads, identity, and data. The Falcon® platform harnesses real-time threat intelligence and enterprise telemetry to automate threat prevention, detection, remediation, hunting, and vulnerability observability through a single, intelligent, lightweight agent.