CompTIA CASP+ (CAS-004) — Question 169

An organization's senior security architect would like to develop cyberdefensive strategies based on standardized adversary techniques, tactics, and procedures commonly observed. Which of the following would BEST support this objective?

Answer options

• A. OSINT analysis
• B. The Diamond Model of Intrusion Analysis
• C. MITRE ATT&CK
• D. Deepfake generation
• E. Closed-source intelligence reporting

Correct answer: C

Explanation

The correct answer is C, MITRE ATT&CK, as it provides a comprehensive framework of adversary behaviors that can be used for developing defensive strategies. The other options, while useful in different contexts, do not offer the same level of standardized and detailed information on techniques and tactics specific to adversaries.