MITRE ATT&CK
MITRE ATT&CK is a community-driven knowledge base mapping adversary tactics, techniques and procedures for threat modelling.
EnginsightGlobal Fields (4)
| Field | Type |
|---|---|
ngs.id Unique identifier for the log entry. | string |
ngs.createdAt Timestamp when the event was created locally. | pdate |
ngs.indexedAt Timestamp when the log was indexed into the SIEM. | pdate |
ngs.source Origin or source system of the log. | string |
Reference-Specific Fields (5)
| Field | Type |
|---|---|
mitre.id | string |
mitre.sub | string |
mitre.type | text_general |
mitre.name | text_general |
mitre.tactics | text_general [] |
Sample Log Event
Below is a representative JSON log entry showing key fields as they're emitted by the system. Depending on the context of the event, some fields may be omitted if they're not applicable.