Started off building a map off of the top 20 defined in https://www.infocyte.com/blog/2021/03/29/top-20-most-common-hacker-behaviors/
Go to https://mitre-attack.github.io/attack-navigator/v3/enterprise/# and select new tab from url. enter the github url for the raw json file.
- update mapped techniques to new ATT&CK version
- add ranking data into the comments
- adjust based off of my background
- work on remediation overlays
1. Evolve this into how to get the most coverage with existing features (windows built in where possible)
2. Define coverage methods and various options to reduce risk
3. Sysmon coverage: https://raw.githubusercontent.com/olafhartong/sysmon-modular/master/attack_matrix/Sysmon-modular.json