Skip to main content
Skip table of contents

Mitre

  1. Log in to LogRhythm NDR's new UI.
  2. Click Hunt from the sidebar menu, and then click Activity.
    The Activity page appears.
  3. Click Mitre Enterprise ATT&CK.
    The Mitre Enterprise window appears displaying the Mitre table with techniques and sub-techniques. 
  4. Click the drop-down arrow in a technique entry to view the sub-technique.

    A few of the technique entries also display the number of events related to the particular technique.
    At the top of the window, the Mac, Windows, Linux, Matrix Coverage, Malicious Software, and Threat Group options are available.
  5. To see the malicious software techniques, click Malicious Software.
  6. To toggle between enable and disable, click next to the particular technique.

    A tool tip appears with information about each technique when you hover over them.
  7. To see the various threat groups, click Threat Group.
  8. To toggle between enable and disable, click next to the particular threat group.

    A tool tip appears with information about each threat group when you hover over them.


JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.