5.2 MITRE ATT&CK Reports

Each MITRE ATT&CK report provides a Top 10 summary of different MITRE ATT&CK events. By reviewing these summaries, you might identify a host or user that is the source or target of an attack.

5.2.1 MITRE ATT&CK Destination Address Summary

The MITRE ATT&CK Destination Address Summary report provides a bar graph of the MITRE ATT&CK events by the Top 10 destination addresses. In addition to the graph, the report includes a second page that provides the following infomration about the addresses:

  • Destination Address

  • Destination Username

  • MITRE ID

  • Event Name

  • Count

5.2.2 MITRE ATT&CK Destination Host Summary

The MITRE ATT&CK Destination Host Summary report provides a bar graph of the MITRE ATT&CK events by the Top 10 destination host names. In addition to the graph, the report includes a second page that provides the following information about the host names:

  • Destination Host Name

  • Destination Username

  • MITRE ID

  • Event Name

  • Count

5.2.3 MITRE ATT&CK Destination Username Summary

The MITRE ATT&CK Destination Username Summary report provides a bar graph of the MITRE ATT&CK events by the Top 10 destination usernames. In addition to the graph, the report includes a second page that provides the following information about the usernames:

  • Destination Username

  • Destination Host Name

  • MITRE ID

  • Event Name

  • Count

5.2.4 MITRE ATT&CK Source Address Summary

The MITRE ATT&CK Source Address Summary report provides a bar graph of the MITRE ATT&CK events by the Top 10 source addresses. In addition to the graph, the report includes a second page that provides the following information about the addresses:

  • Source Address

  • Source Username

  • MITRE ID

  • Event Name

  • Count

5.2.5 MITRE ATT&CK Source Hostname Summary

The MITRE ATT&CK Source Hostname Summary report provides a bar graph of the MITRE ATT&CK events by the Top 10 source host names. In addition to the graph, the report includes a second page that provides the following information about the host names:

  • Source Hostname

  • Source Username

  • MITRE ID

  • Event Name

  • Count

5.2.6 MITRE ATT&CK Source Username Summary

The MITRE ATT&CK Source Username Summary report provides a bar graph of the MITRE ATT&CK events by the Top 10 source usernames. In addition to the graph, the report includes a second page that provides the following information about the usernames:

  • Source Username

  • Source Hostname

  • MITRE ID

  • Event Name

  • Count

5.2.7 MITRE ATT&CK Technique Summary

The MITRE ATT&CK Technique Summary report provides a bar graph of the MITRE ATT&CK events by the Top 10 technique summaries. In addition to the graph, the report includes a second page that provides the following information about the technique summaries:

  • MITRE ID

  • Event Name

  • Destination Username

  • Source Username

  • Count