Using the MITRE map in Mission Control
Security analysts face the challenge of swiftly identifying and responding to potential threats. With the MITRE map feature in Splunk Mission Control, this process becomes more efficient and streamlined.
Watch the video below to learn how to:
- Use the MITRE map within investigations
- See how many different techniques were used by an attacker, and see when they were used
- Access the MITRE website from Splunk Mission Control to view more detailed information
Splunk Mission Control is preinstalled as an app on Splunk Enterprise Security (Cloud) versions 6.6 and higher. Splunk Mission Control is not installed or included for any Splunk SOAR products licensed independent of Splunk Enterprise Security (Cloud), and Splunk Mission Control is not compatible with Splunk Enterprise or Splunk Enterprise Security (Cloud) deployed in a search head cluster environment.
Next steps
These resources might help you understand and implement this guidance:
- Getting Started Guide: Splunk Mission Control