Towards a more open, contributor friendly, vendor neutral model for accelerated learning in InfoSec By John Lambert, @JohnLaTwC, Distinguished Engineer, Microsoft Threat Intelligence Center Summary A community-based approach in infosec can speed learning for defenders. Attack knowledge curated in the MITRE ATT&CK™ framework, detection definitions expressed in Sigma rules, and repeatable…