Overview What You Will Learn Curriculum Instructor

Course Overview

ATT&CK Workbench allows SOC teams, Red & Blue Teamers, Threat hunting and Threat Intelligence professionals, Incident Response personnel, Risk Management Teams, Defensive Security Professionals, and other users of MITRE ATT&CK to manage and extend their own local version of ATT&CK and align it with MITRE’s knowledge base.

The tool enables organizations or individuals to explore, create, annotate, and share extensions of the MITRE ATT&CK knowledge base. Workbench allows users to extend their customized version of the ATT&CK knowledge base with new or updated techniques, tactics, mitigation groups, and tools. Users can also share their extensions with the overall ATT&CK community, thus enabling a greater level of collaboration. Microsoft, JP Morgan Chase, and Verizon are some of the funding research participants for the tool.

The course will begin with an overview of the MITRE ATT&CK Framework, followed by a thorough introduction to the ATT&CK Workbench tool. As you move along, you’ll learn how to install the tool and about Collections and Collection Indexes in ATT&CK Workbench. The course will then illustrate how to create, manage, import, and subscribe to Collections in ATT&CK Workbench. Next, you’ll learn how Knowledge Base Browsing is performed through Objects. The course will then provide a detailed explanation of the steps to create Extensions of an ATT&CK knowledge base.

As you continue your learning, you’ll learn how to use Quality Control Workflows, and how to create and add Objects and Techniques to your ATT&CK knowledge base. Next, the course will explain how to annotate the data added in your Extension. The course will also demonstrate how to integrate your Extension with ATT&CK Navigator, how to integrate your Extension with the ATT&CK Website, and how to integrate your Extension with several other tools. The course will end with a look at how to share your Extensions, followed by a short conclusion.

Following the completion of the course, you’ll be able to create and share your own Extension of the public MITRE ATT&CK knowledge base.

What You Will Learn

  • The significance of safeguarding your organization by leveraging the ATT&CK framework.
  • Understand how to manage and expand your personalized local version of ATT&CK using the Workbench tool.
  • Explore the Workbench’s intuitive interface, which allows you to create, annotate, and share custom extensions of the ATT&CK knowledge base.
  • How the Workbench fosters collaboration within the ATT&CK community.
  • Practical guidance on tailoring and customizing your ATT&CK knowledge base.

Program Curriculum

  • Who is MITRE Engenuity?
  • Threat-Informed Defense
  • Chapter 1 Quiz

  • Introduction to the ATT&CK Framework
  • ATT&CK Matrices
  • What are TTPs?
  • Tactics
  • Techniques & Sub-techniques
  • Procedures
  • Procedures vs. Sub-techniques
  • Data Sources & Mitigations
  • Threat Intelligence
  • ATT&CK Demo
  • Chapter 2 Quiz

  • Installation Overview
  • What is ATT&CK Navigator & Who is it For?
  • Navigator Layers
  • Create a Customized Navigator
  • Navigating the Navigator Toolbar
  • Lab 1
  • Lab 2
  • Importing and Exporting Layers
  • Lab 3
  • Chapter 3 Quiz

  • What is ATT&CK Workbench?
  • Why Use ATT&CK Workbench?
  • Project Overview
  • Chapter 4 Quiz

  • How to Get ATT&CK Workbench
  • Architecture
  • Installing ATT&CK Workbench
  • Lab 1
  • Organization Identity
  • Collection and Collection Index
  • Lab 2
  • Lab 3
  • Chapter 5 Quiz

  • Annotating Data
  • Lab 4
  • Extending Instances
  • Lab 5
  • Adding New Intelligence
  • Lab 6
  • Lab 7
  • Chapter 6 Quiz

  • Workflow
  • Integration
  • Chapter 7 Quiz

  • Course Summary
Load more modules

Instructor

Diego R. Pereyra

Diego Pereyra has been working in IT and Cybersecurity for more than 15 years. He holds certifications in CEH, CEH Practical, CEH Master, CCSK, and MAD (MITRE ATT&CK Defender), among others. He has worked as a Cybersecurity Analyst Level 3 in a SOC, implementing and developing ATT&CK for important clients in Argentina. He also has experience as a Senior Pentester, leading and working on projects of Network Teaming, Pentesting, and Vulnerability Assessments.

In 2021 he has achieved to be the first Argentinean in the TOP 100 Hall of Fame of Certified Ethical Hackers by the EC-Council.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Fastest Way to Level Up Your Cybersecurity Skills

Invest in your future with flexible subscription plans that give you access to the world’s largest online cybersecurity course library. Whether you're exploring cybersecurity courses for beginners or advancing your expertise,
access in-demand courses, practical labs, and CTF challenges designed to support continuous learning.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Build your cybersecurity skills with 900+ bite-sized courses and curated learning paths designed for continuous learning.

$ 69.00
Billed monthly or $599.00 billed annually
Get Started Now
Start your 7-day trial for $1

What is included

  • 880+ Premium Short Courses
  • 70+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Develop real-world cybersecurity skills through hands-on labs and CTF challenges designed for practical learning.

$ 79.00
Billed monthly or $699.00 billed annually
Get Started Now
Start your 7-day trial for $1

Everything in Pro, Plus:

  • 1600+ Hands-on lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Hands-on Labs and Challenges added every month

Related Courses

  • Bootstrap 4 Quick Website Bootstrap Components Course
    Short Course

    Bootstrap 4 Quick Website Bootstrap Components Course

    Software Development

    Explore the basics of Bootstrap and learn to create a website...

    $49.99

    Beginner

    1 hr 30 m

  • CCNA - Understanding Routers and Switches
    Short Course

    CCNA - Understanding Routers and Switches

    Security Architecture and Operations

    A comprehensive guide to understanding the in-depth functioni...

    $49.99

    Intermediate

    2 hr 0 m

  • The Complete Full-Stack JavaScript Course
    Short Course

    The Complete Full-Stack JavaScript Course

    Software Development

    Learn full-stack web development using JavaScript (ReactJS, N...

    $79.99

    Beginner

    24 hr 17 m

  • React.JS for Ecommerce: Building a Store with React.JS
    Short Course

    React.JS for Ecommerce: Building a Store with React.JS

    DevSecOps

    From React.js Fundamentals to Crafting an Online Storefront

    $49.99

    Advanced

    3 hr 30 m

  • CISSP Certification Domains 5, 6, 7, and 8 Video Training
    Short Course

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Cybersecurity

    This course is ideal for individuals who desire to pass the I...

    $69.99

    Intermediate

    6 hr 30 m

  • Helm 3 - Package Manager for Kubernetes
    Short Course

    Helm 3 - Package Manager for Kubernetes

    Software Development

    A must tool for every DevOps engineer

    $49.99

    Intermediate

    1 hr 27 m

  • Learn Ethical Hacking by Hacking Real Websites Legally
    Short Course

    Learn Ethical Hacking by Hacking Real Websites Legally

    Vulnerability Assessment and Pentesting

    Fun way to learn ethical hacking by playing online hacking ga...

    $69.99

    Beginner

    4 hr 18 m

  • Mastering Ansible Playbooks: Debugging and Security
    Short Course

    Mastering Ansible Playbooks: Debugging and Security

    Software Development

    Securing and Automating Linux and Windows Systems with Advanc...

    $99.99

    Advanced

    5 hr 34 m

1 50
View all