Attack Paths & MITRE

Individual misconfigurations rarely tell the full story. RedCloud’s attack-path engine connects findings into graph-based attack paths — showing how an attacker could move from an initial foothold to a high-value target — and maps each step to the MITRE ATT&CK framework.

In this section

• Overview — how attack paths are discovered and scored.
• Attack Path Analysis — step-by-step paths with kill-chain stages and path scores.
• Attack Graph — the interactive force-directed graph of nodes and edges.
• MITRE ATT&CK Heatmap — technique coverage across all tactics.
• Blast Radius — what a compromised identity could reach.

Why attack paths matter

A Critical finding in isolation may be unreachable; a chain of Medium findings may be devastating. By modeling privilege-escalation combos (46+) and lateral movement, RedCloud surfaces the paths that actually expose your crown jewels, so you fix the steps that break the most chains first.

Tip

Use the Path Narrative to get a plain-language explanation of any attack path — useful for executive summaries and ticket descriptions.