CompTIA CySA+ (CS0-003) — Question 375

Which of the following is best suited for determining the methods of an adversary?

Answer options

• A. ОWASP
• B. Cyber Kill Chain
• C. MITRE ATT&CK
• D. Diamond Model of Intrusion Analysis

Correct answer: C

Explanation

The MITRE ATT&CK framework is specifically designed to provide a comprehensive knowledge base of adversary tactics and techniques, making it the best choice for determining methods used by attackers. While OWASP focuses on web application security, the Cyber Kill Chain outlines stages of an attack, and the Diamond Model emphasizes relationships between entities, none of these are as detailed in adversarial behavior as MITRE ATT&CK.