Today, CISA released Decider, a free tool to help the cybersecurity community map threat actor behavior to the MITRE ATT&CK framework. Created in partnership with the Homeland Security Systems Engineering and Development Institute™ (HSSEDI) and MITRE, Decider helps make mapping quick and accurate through guided questions, a powerful search and filter function, and a cart functionality that lets users export results to commonly used formats.
Network defenders, analysts, and researchers can see CISA's video, fact sheet, and blog to get started with Decider. CISA encourages the community to use the tool in conjunction with the recently updated Best Practices for MITRE ATT&CK® Mapping guide.
Decider - https://github.com/cisagov/Decider/
CISA Updates Best Practices for Mapping to MITRE ATT&CK® - https://www.cisa.gov/news-events/alerts/2023/01/17/cisa-updates-best-practices-mapping-mitre-attckr
Video - https://www.youtube.com/watch?v=sTrOV4pnbXA
Blog - Helping Cyber Defenders "Decide" to Use MITRE ATT&CK - https://www.cisa.gov/news-events/news/helping-cyber-defenders-decide-use-mitre-attck
Product Feedback - https://www.surveymonkey.com/r/CISA-cyber-survey?product=%5bproduct_value%5d