Structured threat hunts are more formal searches for tactics used by attackers, specifically by looking at the specific techniques and behavioral patterns they employ. They’re called structured threat hunts because each one is built around a central hypothesis about specific attackers and their associated tactics, techniques, and procedures (TTPs). This theorem usually takes the form of a falsifiable, formalized statement that’s driven by an organization’s external threat intelligence sources.
