Summiting the Pyramid v4.0.0¶
Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. This project is created and maintained by the MITRE Center for Threat-Informed Defense in futherance of our mission to advance the state of the art and the state of the practice in threat-informed defense globally.
Important
What’s New In V4:
In version 4.0, we updated and improved the project in the following ways!
Defined a methodology for identifying the minimum telemetry requirements for ambiguous techniques.
Developed a process for calculating Telemetry Confidence scores that provide relative detection effectiveness values for log sources against a given technique. We also extended this work to look at groupings of techniques with similiar objectives (called use cases) and leveraged automation via AI/LLM to assist with the analysis.
Re-factored the Summiting website to better align to CTID’s portfolio of Detection Engineering work.
Site Contents
Notice¶
© 2023, 2024, 2025, 2026 MITRE. Approved for public release. Document number(s) CT0078, CT0128, 25-1550, 26-0334.
Licensed under the Apache License, Version 2.0 (the “License”); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an “AS IS” BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
This project makes use of ATT&CK®: ATT&CK Terms of Use