The Zero-day Attacks Maturity Model aims at enabling organizations to evaluate and assess their security maturity when dealing with zero-days. It presents best practices collected from literature & security experts, and organized into knowledge areas, and five maturity levels (Initial, Managed, Defined, Predictable, Optimizing).

The Five knowledge areas include (Human, Organizational, and Regulatory Aspects), (Attacks and Defenses), (Systems Security), (Software and Platform Security), & (Infrastructure Security).

The online assessment tool was developed to make the maturity evaluation process of zero-days easier and more accessible for organizations and security teams.

Getting a score of 7 and above reflects a mature organization, following the "Motorola assessment tool" criteria.
For each best practice the evaluation is done in terms of Approach, Deployment, & Results.