Get full access to Industrial Cybersecurity and 60K+ other titles, with a free 10-day trial of O'Reilly.

There are also live events, courses curated by job role, and more.

The cyber kill chain

The concept of the cyber kill chain was created by analysts at Lockheed Martin Corporation in 2011. The concept describes the stages of the process of compromising a victim. It is referred to as a chain because all stages rely on each other, and they need to be performed in succession. The idea is that if the chain gets broken somewhere in the process, the process gets halted. The kill chain is applied to a corporate environment, and it includes the following seven stages:

Reconnaissance
Weaponization
Delivery
Exploitation
Installation
Command and control
Actions and objectives

If you look back at the chapter's attack scenario, the stages can be seen by the following actions:

The attacker finds out about the victim's ...

Get Industrial Cybersecurity now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Don’t leave empty-handed

Get Mark Richards’s Software Architecture Patterns ebook to better understand how to design components—and how they should interact.

It’s yours, free.

Get it now

Check it out now on O’Reilly

Dive in for free with a 10-day trial of the O’Reilly learning platform—then explore all the other resources our members count on to build skills and solve problems every day.

Start your free trial Become a member now