Question 7 - Linux Foundation KCSA Real Exam Questions [March 2026 Update]s

Q: 7

Which security knowledge-base focuses specifically on offensive tools, techniques, and procedures?

Options

Correct Answer:

Explanation

The MITRE ATT&CK® framework is a globally accessible knowledge base of adversary tactics and techniques based on real-world observations. Its specific purpose is to categorize and describe the actions an attacker might take within a network, which are commonly referred to as Tactics, Techniques, and Procedures (TTPs). This model is unique among the options as it is structured entirely from the adversary's (offensive) perspective to help defenders understand and counter specific threats. The other frameworks focus on defensive controls, risk management, or vulnerability awareness rather than offensive procedures.

Why Incorrect

B. OWASP Top 10: This is a standard awareness document focusing on the most critical security risks to web applications, not a comprehensive knowledge base of offensive TTPs.

C. CIS Controls: This is a prescriptive, prioritized set of defensive cybersecurity best practices and safeguards that organizations can implement to improve their security posture.

D. NIST Cybersecurity Framework: This provides a high-level policy framework of standards and guidelines to help organizations manage cybersecurity risk; it is fundamentally a defensive and risk management tool.

References

1. MITRE. (2023). About ATT&CK. The MITRE Corporation. Retrieved from https://attack.mitre.org/about/. The homepage and "About" section state

"MITRE ATT&CK® is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations."

2. NIST. (2018). Framework for Improving Critical Infrastructure Cybersecurity

Version 1.1. National Institute of Standards and Technology. p. 1

Section 1.1. DOI: https://doi.org/10.6028/NIST.CSWP.04162018. The document introduces the framework as a tool for "managing cybersecurity risk."

3. Center for Internet Security (CIS). (2023). CIS Critical Security Controls. Retrieved from https://www.cisecurity.org/controls/. The introduction describes the controls as "a prioritized set of Safeguards to mitigate the most prevalent cyber-attacks."

4. OWASP Foundation. (2021). OWASP Top 10 - 2021. Retrieved from https://owasp.org/Top10/. The introduction states

"The OWASP Top 10 is a standard awareness document for developers and web application security."

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE