CompTIA CySA+ CS0-003 Practice Question
During an incident, a cybersecurity analyst identifies a pattern of behavior that mirrors the techniques of an advanced persistent threat (APT). To effectively respond to and mitigate this threat, the analyst decides to reference a well-known framework for adversarial behavior. Which framework would BEST assist the analyst in identifying the tactics, techniques, and procedures (TTPs) being used?
MITRE ATT&CK
Diamond Model of Intrusion Analysis
OWASP Testing Guide
Cyber kill chains