Keith

@kwm

@Hexacorn @MITREattack One of the things I'm working through is what exactly the ATT&CK team means by each data source. "Process monitoring", for instance, means different things to different people. And when we're talking about using this in detection data pipelines, details obviously matter.

10/25/2018, 6:32:57 PM

Favs: 2

Retweets: 1