Mapping CVEs to the MITRE ATTACK framework
As the cyber industry embraces and standardizes the MITRE ATTACK framework, while at the same time understanding that vulnerability management by itself is not enough, we must combine both worlds and expand our visibility and perception of CVEs. This white paper explores how the Vulcan Cyber research team, also known as “Voyager18” team, mapped relevant techniques to CVEs through machine learning and textual analysis.
See the full research
Here’s what you’ll learn
How others have tried to map ATT&CK techniques to CVEs in the past - and the challenges they faced.
What our team did differently to ensure greater success and accuracy in mapping the MITRE ATT&CK framework.
Why textual analysis was eventually employed to augment the results.
The importance of continual updating and community input.