Cyber kill chain is framework to identify, detect and prevent intrusions. Moreover, it works by comprehensively understanding the tactics and techniques used by an attacker while compromising an organization security postures. Besides, the frameworks is helpful to study the attack cycle from the initial stage until the intrusion occurs. Furthermore, it is a framework used to evaluate the effeteness of security controls through enhancing the capability of detecting and stopping cyberattacks.
Cyber kill chain framework employs the seven steps listed below:
- Reconnaissance
- Weaponization
- Delivery
- Exploitation
- Installation
- Command and Control (C&C)
- Actions on Objectives
the_cyberguy Answered question 14/07/2022