Cyber Kill Chain

The cyber kill chain is a concept that outlines the steps an attacker must take to compromise a network. These steps include reconnaissance, weaponizing an attack, delivering the attack, exploitation, installing malware on the target, establishing command and control, and finally, taking action on objectives. An attacker must go through all of these seven stages to successfully breach a system.

The cyber kill chain concept outlines the sequential steps an attacker must take to breach a system. These seven steps give defenders chances to detect and stop the attacker at each stage. As one moves down the chain, detection becomes increasingly easier. The main idea of the cyber kill chain is that if you stop the attacker at any step, the entire attack is stopped.

Last updated 1 year ago