MITRE ATT&CK® FRAMEWORK

Interactive Coverage Map

See exactly which adversary techniques Zero Day IT detects, blocks, and monitors — mapped to the industry-standard MITRE ATT&CK framework.

84%of MITRE ATT&CK techniques detected or blocked

Detected + Blocked

Detected, Partial Response

Monitoring Only

Not Covered

Reconnaissance

Active Scanning

Phishing for Info

Gather Victim Identity

Search Open Websites

Search Open Tech DBs

Resource Development

Acquire Infrastructure

Compromise Accounts

Develop Capabilities

Stage Capabilities

Obtain Capabilities

Initial Access

Phishing

Valid Accounts

Exploit Public Apps

Drive-by Compromise

Supply Chain Compromise

External Remote Services

Execution

Command/Script Interpreter

User Execution

Scheduled Task

System Services

Exploitation for Execution

Persistence

Boot/Logon Autostart

Create Account

Scheduled Task

Valid Accounts

Web Shell

Modify Auth Process

Privilege Escalation

Abuse Elevation Control

Access Token Manipulation

Boot/Logon Autostart

Exploitation for Priv Esc

Valid Accounts

Defense Evasion

Obfuscated Files

Masquerading

Modify Registry

Disable Security Tools

Rootkit

Process Injection

Credential Access

Brute Force

Credential Dumping

Phishing

Steal Web Session Cookie

MFA Interception

OS Credential Dump

Discovery

Network Scanning

Account Discovery

System Info Discovery

File Discovery

Security Software Discovery

Lateral Movement

Remote Services

Lateral Tool Transfer

Pass the Hash

Internal Spearphishing

Exploit Remote Services

Collection

Data from Local System

Email Collection

Screen Capture

Clipboard Data

Data from Cloud Storage

Command & Control

Application Layer Protocol

Encrypted Channel

Web Service

Non-Standard Port

Domain Fronting

Exfiltration

Exfil Over C2 Channel

Exfil to Cloud

Data Transfer Size Limits

Scheduled Transfer

Impact

Data Encryption (Ransomware)

Service Stop

Data Destruction

Defacement

Resource Hijacking

Want your full ATT&CK coverage report?

We map your current security stack against the full MITRE ATT&CK matrix and identify gaps — free for qualified organisations.

Request Full Coverage Report →