This repository contains policies were designed for the MITRE ATT&CK Evaluations.
Available policies:
- 2019 MITRE Policy (Deep Security Manager™ 12.0.296, Deep Security Agent version 12.0.0-360)
- 2020 MITRE Policies (Cloud One Workload Security™, Agent version 20.0.0-1540)
- 2021 MITRE Policies (Cloud One Workload Security™, Agent version 20.0.0.3032)
- 2023 MITRE Policies (Cloud One Workload Security™, Agent version 20.0.0.6320 (Win Server 2019 & Linux) & Agent version 20.0.0.6321 (Win 10))
These policies can be tuned as per the Customer infrstructure and environment. Project contributors may be able to help, depending on their time and availability. Please be specific about what you're trying to do, your system, and steps to reproduce the problem.
Official support from Trend Micro is not available. Individual contributors may be Trend Micro employees, but are not official support.
If you have questions about using the policy, consider asking on Stack Overflow. Tag your question with deepsecurity and it will get pushed to our internal automation support Slack channel.
We accept contributions from the community. To submit changes:
- Fork this repository.
- Create a new feature branch.
- Make your changes.
- Submit a pull request with an explanation of your changes or additions.
We will review and work with you to release the policy.