Easy Kibana visualization of MITRE ATT&CK® round 2 evaluations

MITRE's recent evaluation of 21 security products, focused on simulating attacks using the ATT&CK framework, allowed security teams to analyze detection capabilities across various vendors. This evaluation involved MITRE's red team executing orchestrated attacks, while vendors acted as the blue team tasked with detecting these threats. Unlike typical assessments, detection was only the starting point, emphasizing the importance of understanding the full attack chain. Elastic leveraged Kibana to visualize the results, offering users the ability to filter and analyze detection data by vendor. This approach highlights detection of both major and sub-steps in the attack scenarios and provides insights into the performance of products, excluding managed security service providers. The visualizations displayed not only detections but also misses, offering a comprehensive view of vendors' capabilities in detecting tactics and techniques across all evaluation steps. Elastic expressed gratitude towards MITRE for the evaluation, noting it as a valuable opportunity to refine their security solutions and provide an improved user experience.