MITRE ATT&CK® is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, in government, and in the cybersecurity product and service community.

The essential elements of the behavioral model proposed by ATT&CK are as follows:

• During an attack, tactics refer to short-term, tactical enemy goals.
• Techniques that describe how adversaries (the individual cells) accomplish tactical goals.
• Adversarial method and other metadata use that has been verified (linked to techniques).