Models and Reference Frameworks
The following is a list of some of the most useful mental models commonly referenced in Infosec as well as the incredibly useful frameworks that are being developed to standardize and organize key cyber attack and defense techniques, threat intelligence and data.
• The Lockheed Martin Cyber Kill Chain
• Incident Response Cycle (NIST SP800-61r2)
• David Bianco’s Pyramid of Pain
• The Diamond Model of Intrusion Analysis
• MITRE ATT&CK – list of attacker tactics, techniques, procedures, tools, threat groups, mitigation
and detection options, and much more!
• MITRE Shield – Tactics, techniques, and a knowledgebase for active defense
• ATC RE&CT – A framework, collection and data source for incident response techniques
‒ RE&CT Navigator – Supplementary visualization tool
Protection Profiles
National Information Assurance Partnership NIAP – Protection Profiles
The Force of Knowledge 