Udemy - MITRE ATT and CK for Blue Teams - Map, Detect and Stop Real Attacks

Files:

• Get Bonus Downloads Here.url (0.2 KB)
~Get Your Files Here ! 1 - ATT&CK Foundations for Defenders
• 1. Course Documents and How to Use Them.mp4 (49.8 MB)
• 2. Welcome Who This Course Is For.mp4 (28.7 MB)
• 3. What ATT&CK Is — Tactics, Techniques, and Procedures.mp4 (38.1 MB)
• 4. Tactics vs. Techniques vs. Sub-Techniques vs. Procedures.mp4 (40.4 MB)
• 5. The Enterprise Matrix and Staying Current (v18 and Beyond).mp4 (41.5 MB)
• 6. Threat-Informed Defense The Blue Team Mindset.mp4 (34.8 MB)
• D01_ATTACK_v19_Defenders_Quick_Reference.docx (19.3 KB)
• D01_OWASP_LLM_Top_10_2025_Quick_Reference_and_Acronym_Glossary.docx (23.8 KB)
• D02_LLM_Application_Threat_Modeling_Worksheet.docx (19.9 KB)
• D02_Threat_Intel_to_ATTACK_Mapping_Worksheet.docx (17.6 KB)
• D03_ATTACK_Navigator_Coverage_Heatmap_Build_Guide.docx (15.9 KB)
• D03_HandsOn_Attack_Lab_Setup_and_Ethics_Guide.docx (18.9 KB)
• D04_Prompt_Injection_DefenseInDepth_Checklist_LLM01.docx (21.9 KB)
• D04_Technique_Prioritization_Scoring_Worksheet.docx (21.0 KB)
• D05_Logging_and_Telemetry_Requirements_Checklist.docx (18.7 KB)
• D05_Secure_Output_Handling_Engineering_Standard_LLM05.docx (20.5 KB)
• D06_Detection_Analytic_Specification_Template.docx (18.4 KB)
• D06_System_Prompt_Hardening_and_Secrets_Handling_Policy_LLM07_LLM02.docx (19.6 KB)
• D07_Sensitive_Information_Disclosure_Prevention_Worksheet_LLM02.docx (16.4 KB)
• D07_Starter_Detection_Pack_T1003_T1059.docx (21.6 KB)
• D08_AI_Supply_Chain_Integrity_and_AIBOM_Checklist_LLM03_LLM04.docx (16.5 KB)
• D08_Adversary_Emulation_Lab_Safety_Runbook.docx (21.3 KB)
• D09_Purple_Team_Detection_Gap_Tracker.docx (19.0 KB)
• D09_RAG_Pipeline_and_Vector_Store_Hardening_Checklist_LLM08.docx (15.6 KB)
• D10_Agent_LeastPrivilege_and_Excessive_Agency_Worksheet_LLM06.docx (16.7 KB)
• D10_Agent_LeastPrivilege_and_Excessive_Agency_Worksheet_LLM06.pdf (129.4 KB)
• D10_Incident_Response_Containment_Playbook_Template.docx (24.5 KB)
• D11_Detection_Program_Maturity_and_Metrics_Scorecard.docx (19.2 KB)
• D11_Unbounded_Consumption_and_RateLimiting_Controls_Template_LLM10.docx (18.3 KB)
• D11_Unbounded_Consumption_and_RateLimiting_Controls_Template_LLM10.pdf (196.6 KB)
• D12_LLM_Security_Program_Blueprint_and_Master_DefenseInDepth_Checklist.docx (19.5 KB)
• D12_LLM_Security_Program_Blueprint_and_Master_DefenseInDepth_Checklist.pdf (165.6 KB)
• D12_Threat_Informed_Defense_90_Day_Roadmap.docx (19.5 KB)
__MACOSX
• _D07_Sensitive_Information_Disclosure_Prevention_Worksheet_LLM02.docx (0.2 KB)
• _D07_Starter_Detection_Pack_T1003_T1059.docx (0.2 KB)
• _D08_AI_Supply_Chain_Integrity_and_AIBOM_Checklist_LLM03_LLM04.docx (0.2 KB)
• _D08_Adversary_Emulation_Lab_Safety_Runbook.docx (0.2 KB)
• _D09_Purple_Team_Detection_Gap_Tracker.docx (0.2 KB)
• _D09_RAG_Pipeline_and_Vector_Store_Hardening_Checklist_LLM08.docx (0.2 KB)
2 - Walking the Matrix — How Real Attacks Unfold
• 10. Collection, C2, Exfiltration, and Impact.mp4 (50.9 MB)
• 11. Case Study Mapping a Real Intrusion to ATT&CK.mp4 (52.4 MB)
• 7. Initial Access and Execution in the Wild.mp4 (50.4 MB)
• 8. Persistence, Privilege Escalation, and Defense Evasion.mp4 (52.6 MB)
• 9. Credential Access, Discovery, and Lateral Movement.mp4 (51.0 MB)
3 - Mapping and Coverage with ATT&CK Navigator
• 12. Getting Started with ATT&CK Navigator.mp4 (39.0 MB)
• 13. Mapping Threat Intel to Techniques (Groups & Campaigns).mp4 (38.1 MB)
• 14. Building a Coverage Heatmap and Finding Gaps.mp4 (45.9 MB)
• 15. Prioritizing Techniques by Risk and Relevance.mp4 (40.2 MB)
4 - Detection Engineering with Detection Strategies & Analytics
• 16. The v18 Detection Model Strategies, Analytics, Log Sources, Data Components.mp4 (45.9 MB)
• 17. From Technique to Data Requirements What to Log.mp4 (45.4 MB)
• 18. Writing Your First Detection Analytic.mp4 (48.1 MB)
• 19. Lab Detecting Credential Dumping (T1003).mp4 (49.3 MB)
• 20. Lab Detecting Suspicious Command Execution (T1059).mp4 (48.1 MB)
• 21. Tuning Detections Reducing False Positives.mp4 (39.1 MB)
5 - Validating Detections with Adversary Emulation
• 22. Adversary Emulation vs. Pen Testing vs. Red Teaming.mp4 (44.5 MB)
• 23. Lab Running Atomic Red Team Tests Safely.mp4 (49.4 MB)
• 24. Lab Emulating an Adversary with Caldera.mp4 (49.3 MB)
• 25. Closing the Loop Detection Gaps to New Analytics.mp4 (40.8 MB)
6 - Stop the Attack — Response and Program Building
• 26. From Detection to Response Containment Playbooks.mp4 (48.2 MB)
• 27. Incident Response Mapped to ATT&CK.mp4 (46.5 MB)
• 28. Measuring and Maturing Your Detection Program.mp4 (41.9 MB)
• 29. Course Wrap-Up Your Threat-Informed Defense Roadmap.mp4 (31.1 MB)
• Bonus Resources.txt (0.1 KB)