Jump to navigation Jump to content

Speaker

Adam Pennington

Adam Pennington

ATT&CK Lead - MITRE

Washington, District of Columbia, United States

Actions

Adam leads ATT&CK at The MITRE Corporation and collected much of the intelligence leveraged in creating ATT&CK’s initial techniques. He has spent much of his 13 years with MITRE studying and preaching the use of deception for intelligence gathering.

Prior to joining MITRE, Adam was a researcher at Carnegie Mellon’s Parallel Data Lab and earned his BS and MS degrees in Computer Science and Electrical and Computer Engineering as well as the 2017 Alumni Service Award from Carnegie Mellon University. Adam has presented and published in a number of venues including FIRST CTI, USENIX Security, DEF CON, and ACM Transactions on Information and System Security.

Links

Area of Expertise

  • Information & Communications Technology

Topics

  • MITRE ATT&CK
  • cyber security
  • deception

Sessions

Bringing Intelligence into Cyber Deception with MITRE ATT&CK

Deception has become a popular concept in security, but are we really fooling adversaries? Honeypots and other technical solutions often don’t align with what real adversaries do. This talk will examine how we can successfully deceive adversaries by using threat intelligence mapped to MITRE ATT&CK®.

In classical deception planning, intelligence serves a key role in understanding an adversary’s likely beliefs, expectations, and reactions, but this often hasn’t carried over into the cyber realm. In this talk, I’ll show how to bridge that gap and leverage ATT&CK for cyber deception planning. I’ll present a methodology for making decisions on where to focus deception resources based on adversary techniques and how to align deception capabilities with the expectations and visibility of real cyber threat actors. Attendees will learn how they can leverage cyber threat intelligence to deceive their adversaries and gain valuable new intelligence as they do so.

Adam Pennington

ATT&CK Lead - MITRE

Washington, District of Columbia, United States

Links

Actions

Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.

Jump to top