MITRE ATT&CK Framework Compliance and Harmonization

Heimdal®’s alignment with MITRE’s prescriptive cybersecurity practices only comes to reinforce our statement - “Prevent tomorrow’s threats today”.

Play button

What is Mitre ATT&CK Framework?

The MITRE ATT&CK framework is a multi-tiered system with over 100 techniques and sub-techniques that is used to detail the inner-working of cyber-attacks, covering every known and unknown base, from infiltration to long-term impact on the victim.

With a wide variety of tools, solutions, and services, Heimdal® achieved a MITRE compliance score of over 60%, the highest in a fast-paced and competitive industry. We traverse every front or attack surface a threat actor could use in order to mount a cyberattack against YOUR company: fraud prevention, email security, traffic filtering, malware protection & prevention, ransomware encryption protection, automated patching, privilege elevation and escalation management (PEDM), application control, eXtended Detection and Response XDR/ Security Operations Center (SOC), endpoint detection and respond (EDR), secure remote assistance, and more.

MITRE’s ATT&CK is the world’s leading community-powered defense & threat-hunting framework. Serving corporate and institutions with actionable advice on risk and vulnerability-based management, MITRE quickly became the baseline synonymous with exemplary cybersecurity.

Combine or blend our solutions for the best value cyber-defense. Reinforce your protection against zero-day threats, persistent malware, ransomware, worms, and debilitating attacks that could endanger the future of your company.

Mitre Logo

Explore Heimdal® and MITRE ATT&CK

Take a moment and tour our service. See how they stack up against MITRE’s requirements.


Resource Development

Initial Access



Privilege Escalation

Defense Evasion



Command and Control


Lateral Movement


Credential Access

Active Scanning

Gather Victim Host Info

Gather Victim Identity Info

Gather Victim Network Info

Gather Victim Org Info

Phishing for Info

Search Closed Sources

Search Open Technical Database

Search Open Websites/Domains

Search Victim-Owned Website


Sub-techniques: Scanning IP block, Vulnerability Scanning.

Description: Threat actors may employ direct or indirect recon scanning methods to probe network traffic to understand the layout of the victim’s network.

Heimdal® Mitigations: DarkLayer Guard and Threat-to-Process Correlation

Combine or blend our solutions for the best value cyber-defense.

Reinforce your protection against zero-day threats, persistent malware, ransomware, worms, and debilitating attacks that could endanger the future of your company.

Heimdal® Unified Threat Platform

Individually as products or together as a suite, Heimdal® gives you unmatched flexibility in tailoring your cybersecurity defenses and scaling up any existing setup.

Unified Thread Platform Image Unified Thread Platform Image
Vulnerability Management Icon

Vulnerability Management (Prevent)

Automated patch and asset management that enables you to deploy and update any Microsoft, 3rd party and proprietary software, from anywhere in the world and according to any schedule, with a full CVE/CVSS audit trail and flawless data compliance.

Go to Product
Next-Gen Antivirus Icon

Next-Gen Antivirus (Detect)

4 advanced malware detection layers complemented by Firewall controls and MDM allows effortless remediation of all known threats and scales up into a complete EPDR solution with the DNS security module.

Go to Product
Ransomware Encryption Protection Icon

Ransomware Encryption Protection (Detect)

A signatureless encryption protection technology that kills and stops any ransomware encryption outbreaks, universally compatible with any antivirus but achieving what traditional antivirus is uncapable of.

Go to Product
Privilege Access Management Icon

Privilege Access Management (Comply)

Manage user permissions easily, prevent insider threat and strengthen your endpoint security with truly innovative access governance and the only solution to de-escalate on threat detection.

Go to Product
Application Control Icon

Application Control (Comply)

A revolutionary and easy to use application control solution that enables white and blacklisting of any execution, and is the only app control that unifies with PAM.

Go to Product
Email Security Icon

Security (Defend)

A highly efficient all-in-one email security and spam filter solution that detects email-delivered malware, stops spam and filters malicious URLs and phishing attempts in a simple integration.

Go to Product
Email Fraud Prevention Icon

Email Fraud Prevention (Defend)

An innovative communications protection solution that prevents email fraud and business email compromise, monitoring over 125 vectors such as Phraseology, IBAN/Account numbers, Attachment modification, Link execution and Man-in-the-email detection.

Go to Product
Remote Desktop Control Icon

Remote Desktop Control (Support)

Support your users anywhere in the world with a powerful remote connection solution with multi-factor authentication, attended and unattended access options, video recording and a full audit trail.

Go to Product
DNS Filtering Icon

Filtering (Prevent)

World’s most technologically advanced DNS security product, powered by predictive AI, enables ideal defenses against any unknown threat. Compatible with any other security solution.

Go to Product