What is the Cyber Kill Chain?

The Cyber Kill Chain is a framework that breaks attacker behavior into stages such as reconnaissance, weaponization, delivery, exploitation, installation, command and control, and actions on objectives.

The model helps defenders think about where detection and prevention controls can interrupt an attack path.

When I write lab reports, I use frameworks like this to connect technical observations to defender thinking.