Summary: Yesterday, CISA released an Eviction Strategies Tool, a no-cost resource designed to support cyber defenders in their effort to respond to cyber incidents.
The Eviction Strategies Tool is comprised of:
- Playbook-NG, a web application for next-generation operations; and
- COUN7ER, a database of atomic post-compromise countermeasures mapped to adversary tactics, techniques, and procedures.
Analyst Note: This new free resource is another valuable free tool that network defenders can add to their arsenal to aid incident response. CISA notes that the tool addresses a critical gap: the need for a clear understanding of the necessary actions to properly contain and evict adversaries from networks and devices. CISA designed Playbook-NG and COUN7ER to substantially accelerate the creation of response plans and to assist defenders with tailored adversary eviction strategies. WaterISAC highly recommends members make use of this valuable free resource to aid in the creation and implementation of effective incident response activities.
Original Source: https://www.cisa.gov/eviction-strategies-tool
Additional Reading:
Related WaterISAC PIRs: 12
