- Products
- Learn
- Local User Groups
- Partners
- More
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
Join our TechTalk: Malware 2021 to Present Day
Building a Preventative Cyber Program
Be a CloudMate!
Check out our cloud security exclusive space!
Check Point's Cyber Park is Now Open
Let the Games Begin!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
in today world of emerging threat, MITRE ATT&CK allows us to understand better the attacker intent and take actions upon the threats that has been detected.
the MITRE ATT&CK extension to SmartConsole (R80.30 version and above) expose the attackers intent by analyzing automatically your logs and use them to expose your own ATT&CK landscape and the Mitigations you need to take.
The community version can be downloaded from this link:
https://secureupdates.checkpoint.com/appi/mitre/mitre_network/extension.json
if you have any questions, inputs, challenges - please update us or send a direct email to orenkor@checkpoint.com
in today world of emerging threat, MITRE ATT&CK allows us to understand better the attacker intent and take actions upon the threats that has been detected.
the MITRE ATT&CK extension to SmartConsole (R80.30 version and above) expose the attackers intent by analyzing automatically your logs and use them to expose your own ATT&CK landscape and the Mitigations you need to take.
Thanks Oren!
This also can work for Sandblast Agent?? I know we can see a special view under Threat Hunting but we are unable to generate a report based on Threat Hunting querys
Hey Mike,
it is not working for now on the raw logs of the agent.
we are extracting all the MITRE content from our agent to the Forensics but in the agent side we are mainly focused on the threat hunting and full MITRE coverage in the cloud deployment.
Hey Mike,
it is not working for now on the raw logs of the agent.
we are extracting all the MITRE content from our agent to the Forensics but in the agent side we are mainly focused on the threat hunting and full MITRE coverage in the cloud deployment.
;Why is it not possible to use this extension without approving CP to use metadata and application usage?
Internal policies disallow me to use such applications 🙄
Hey,
the extension is complementary to our customers.
we have just released it and the main goal is to understand if there are errors and what is the customer flow of usage to improve it.
we do not collect any info on the network of the customer, just the usage (where he clicked and what are the errors) - thats how we can improve a web application that is a complementary and without any payment for.
Hey,
the extension is complementary to our customers.
we have just released it and the main goal is to understand if there are errors and what is the customer flow of usage to improve it.
we do not collect any info on the network of the customer, just the usage (where he clicked and what are the errors) - thats how we can improve a web application that is a complementary and without any payment for.
;Hi Oren,
I'm trying to run extension and I have just error "Sorry, there was a problem loading the page...".
Any idea to solve ?
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY