Sign In Get Started
Defense Confidence Platform

Know Your Coverage. Close the Gaps.

CounterMeasure maps security telemetry, detection rules, and validation results to MITRE ATT&CK — then surfaces coverage gaps, confidence scores, and prioritized recommendations.

Get Started See How It Works
0 Confidence
0 Visibility 0 Detection 0 Validation

Detection

Map rules from any SIEM to ATT&CK techniques

0 rules mapped

Visibility

Inventory telemetry from endpoint tools, network, cloud

0 data sources

Validation

Confirm detection effectiveness through automated testing

0 % pass rate

How Confidence Scoring Works

Visibility × 0.3
+
Detection × 0.5
+
Validation × 0.2
= Confidence

Every technique in the MITRE ATT&CK framework receives a per-technique confidence score based on three dimensions:

  • Visibility (30%) — Do you collect the telemetry needed to observe this technique?
  • Detection (50%) — Do you have rules that fire when this technique is used?
  • Validation (20%) — Have you tested that those detections actually work?

Scores aggregate across all techniques to produce your overall posture score.

MITRE ATT&CK Coverage Matrix

Hover over any column to see technique-level coverage details

Covered Partial Gap
Recon
6/10
ResDev
4/8
InitAcc
7/10
Exec
10/14
Persist
14/20
PrivEsc
9/14
DefEvas
28/42
CredAcc
12/17
Discov
24/31
LatMov
6/9
Collect
11/17
C2
10/16
Exfil
5/9
Impact
10/14
78% average coverage · 2 critical gaps · 156 techniques mapped

Prioritized Coverage Gaps

Technique ID Technique Name Tactic Coverage Intel Hits Priority
T1059 Command and Scripting Interpreter Execution Partial 847 critical
T1078 Valid Accounts Defense Evasion No Coverage 623 critical
T1021 Remote Services Lateral Movement Partial 412 high
T1053 Scheduled Task/Job Persistence No Coverage 389 high
T1071 Application Layer Protocol Command and Control Partial 256 medium
T1027 Obfuscated Files or Information Defense Evasion No Coverage 198 medium

Supported Integrations

Detection Sources

Splunk Elastic SIEM Microsoft Sentinel Sigma Chronicle

Visibility Sources

CrowdStrike Tanium Carbon Black SentinelOne Microsoft Defender

Validation Sources

Atomic Red Team MITRE Caldera SafeBreach AttackIQ

Intel Sources

MITRE ATT&CK OpenCTI MISP AlienVault OTX

See your real coverage posture

Connect your first data source in minutes. CounterMeasure maps everything to MITRE ATT&CK automatically.

Get Started Sign In