CompTIA PenTest+ (PT0-002) — Question 408

Which of the following describes a globally accessible knowledge base of adversary tactics and techniques based on real-world observations?

Answer options

• A. OWASP Top 10
• B. MITRE ATT&CK
• C. Cyber Kill Chain
• D. Well-Architected Framework

Correct answer: B

Explanation

The correct answer is B, MITRE ATT&CK, as it is specifically designed to provide a comprehensive knowledge base of tactics and techniques used by adversaries based on observed behaviors. The other options, while relevant in cybersecurity, do not focus on adversary tactics in the same way; A refers to web application security risks, C outlines a model for understanding attacks, and D is about cloud architecture best practices.