Skip to main content
Enhanced Vulnerability Tags

Learn about new vulnerability tagging designed to provide you with deeper insights into vulnerabilities and their related attack patterns

Updated over a week ago

About

Vulcan introduces two new vulnerability tagging features designed to provide you with deeper insights into vulnerabilities and their related attack patterns. These enhancements will help you better understand and respond to potential threats.

MITRE ATT&CK Tags

The MITRE ATT&CK framework is an internationally recognized knowledge base of adversary tactics and techniques drawn from real-world observations. It is a crucial tool for cybersecurity professionals to prepare for and counteract cyber threats. The "MITRE ATT&CK" tags aim to integrate this valuable resource into the Vulcan Platform for the relevant vulnerabilities.

Visit the "Mapping CVEs to the MITRE ATT&CK framework" page to learn how attack techniques are referenced in a tag. Explore each technique's comprehensive profile, which includes descriptions, examples, mitigation strategies, and detection tips.

Tag

Tag Structure

Example

MITRE ATT&CK

"ATT&CK: [Attack Tactic]: [Technique Number]"

ATT&CK:Privilege Escalation:T1078

Automated Tagging Logic

A sophisticated algorithm automatically analyzes each vulnerability's characteristics to match it with the relevant MITRE ATT&CK tactic and technique and attaches the respective "MITRE ATT&CK" tag to the CVEs. This tagging logic ensures that each vulnerability is categorized accurately and informative.

Use the Magic Search to search and filter by Vulnerability tag:

Windows Patch Tuesday Tag

"Patch Tuesday" is a well-known event in the cybersecurity community. On the second Tuesday of each month, Microsoft releases security updates for its software products, including Windows. To help you keep track of these updates, we've introduced the "Windows Patch Tuesday Tag" for vulnerabilities that have been addressed during these updates. These tags provide a simple way for you to track when a vulnerability was patched by Microsoft, allowing you to prioritize patch management effectively.

Feature

Tag Structure

Example

Windows Patch Tuesday Tag

"Windows Patch Tuesday: [Month Year]"

Windows Patch Tuesday: Jun 2021

Automated Tagging Logic

The Vulcan Platform automatically attaches Patch Tuesday tags to vulnerabilities by monitoring the Microsoft Security Update Guide and aligning released patches with documented CVEs to ensure accuracy and timeliness.

Use the Magic Search to search and filter by Vulnerability tag:

Did this answer your question?