MITRE ATT&CK is a comprehensive framework of adversary tactics, techniques and procedures based on real-world observations. It has been used as a foundation for threat modelling in different sectors, such as government, academia and industry. To the best of our knowledge, no previous work has been devoted to the comprehensive collection, study and investigation of the current state of the art leveraging the MITRE ATT&CK framework. We select and inspect more than fifty major research contributions, while conducting a detailed analysis of their methodology and objectives in relation to the MITRE ATT&CK framework. We provide a categorization of the identified papers according to different criteria such as use cases, application scenarios, adopted methodologies and the use of additional data. Finally, we discuss open issues and future research directions involving not only the MITRE ATT&CK framework but also the fields of risk analysis and cyber-threat intelligence at large.

翻译：MITRE ATT&CK是一个基于真实世界观察的对手战术、技术和程序综合框架，已被政府、学术界和工业界等多个领域用作威胁建模的基础。据我们所知，此前尚无工作致力于全面收集、研究和调查当前利用MITRE ATT&CK框架的先进成果。我们筛选并审查了五十余篇主要研究贡献，对其方法论和目标进行了与MITRE ATT&CK框架相关的详细分析。根据不同标准（如用例、应用场景、采用的方法论及额外数据的使用），我们对所识别论文进行了分类。最后，我们讨论了涉及MITRE ATT&CK框架以及更广泛的风险分析和网络威胁情报领域的开放问题与未来研究方向。