Vulnerability Management – Think like an Attacker to Prioritize Risk
Attackers care about ROI – they want to accomplish their objective with the least investment of time
and resources possible. To most effectively manage vulnerabilities, you need to think like the attacker:
how would you go about doing damage, exfiltrating valuable information, and making money? What
are the key assets in your network that you would target? How would you get to these assets?