Cервис управления информационной безопасностью
Cервис управления информационной безопасностью
Поиск
Вход Регистрация
MITRE ATT&CK - Matrix Enterprise ATT&CK
RU
Риски
Каталоги
MITRE ATT&CK
Куда я попал?
SECURITM это SGRC система, ? автоматизирующая процессы в службах информационной безопасности. SECURITM помогает построить и управлять ИСПДн, КИИ, ГИС, СМИБ/СУИБ, банковскими системами защиты.
А еще SECURITM это место для обмена опытом и наработками для служб безопасности.
Подробнее
Наш канал
Reconnaissance
10 techniques

Техники

There are risks in the Community base
There are risks in the team base
4
T1592
0
T1594
Search Victim-Owned Websites
3
T1589
5
T1596
3
T1595
4
T1591
6
T1590
3
T1593
2
T1597
4
T1598
Resource Development
8 techniques
8
T1583
8
T1584
3
T1586
6
T1608
3
T1585
7
T1588
0
T1650
Acquire Access
4
T1587
Initial Access
11 techniques
0
T1133
External Remote Services
0
T1091
Replication Through Removable Media
3
T1195
0
T1190
Exploit Public-Facing Application
0
T1659
Content Injection
0
T1199
Trusted Relationship
4
T1566
4
T1078
0
T1200
Hardware Additions
0
T1189
Drive-by Compromise
0
T1669
Wi-Fi Networks
Execution
16 techniques
0
T1047
Windows Management Instrumentation
0
T1129
Shared Modules
0
T1675
ESXi Administration Command
6
T1053
0
T1106
Native API
0
T1610
Deploy Container
0
T1674
Input Injection
12
T1059
0
T1609
Container Administration Command
4
T1204
0
T1072
Software Deployment Tools
3
T1559
0
T1203
Exploitation for Client Execution
3
T1569
0
T1651
Cloud Administration Command
0
T1648
Serverless Execution
Persistence
23 techniques
5
T1037
5
T1543
0
T1133
External Remote Services
14
T1547
6
T1137
6
T1053
2
T1176
2
T1205
0
T1525
Implant Internal Image
0
T1112
Modify Registry
5
T1542
0
T1554
Compromise Host Software Binary
7
T1098
12
T1574
4
T1078
17
T1546
0
T1671
Cloud Application Integration
0
T1197
BITS Jobs
6
T1505
0
T1668
Exclusive Control
3
T1136
0
T1653
Power Settings
9
T1556
Privilege Escalation
14 techniques
5
T1037
5
T1543
14
T1547
6
T1053
12
T1055
0
T1611
Escape to Host
6
T1548
7
T1098
12
T1574
4
T1078
0
T1068
Exploitation for Privilege Escalation
17
T1546
5
T1134
2
T1484
Defense Evasion
45 techniques
0
T1006
Direct Volume Access
0
T1666
Modify Cloud Resource Hierarchy
0
T1014
Rootkit
5
T1578
2
T1600
14
T1564
0
T1202
Indirect Command Execution
0
T1140
Deobfuscate/Decode Files or Information
11
T1562
11
T1036
12
T1055
2
T1205
14
T1218
0
T1620
Reflective Code Loading
4
T1550
0
T1207
Rogue Domain Controller
0
T1610
Deploy Container
0
T1112
Modify Registry
0
T1535
Unused/Unsupported Cloud Regions
2
T1222
6
T1548
10
T1070
0
T1647
Plist File Modification
5
T1542
0
T1612
Build Image on Host
3
T1497
2
T1480
2
T1601
12
T1574
4
T1078
17
T1027
1
T1599
6
T1553
0
T1197
BITS Jobs
0
T1656
Impersonation
0
T1221
Template Injection
5
T1134
0
T1672
Email Spoofing
0
T1622
Debugger Evasion
2
T1484
0
T1220
XSL Script Processing
9
T1556
2
T1216
0
T1211
Exploitation for Defense Evasion
3
T1127
Credential Access
17 techniques
4
T1557
8
T1003
0
T1539
Steal Web Session Cookie
0
T1040
Network Sniffing
5
T1558
6
T1555
8
T1552
0
T1649
Steal or Forge Authentication Certificates
0
T1528
Steal Application Access Token
2
T1606
0
T1621
Multi-Factor Authentication Request Generation
0
T1212
Exploitation for Credential Access
4
T1110
0
T1187
Forced Authentication
4
T1056
0
T1111
Multi-Factor Authentication Interception
9
T1556
Discovery
33 techniques
0
T1033
System Owner/User Discovery
0
T1613
Container and Resource Discovery
3
T1069
0
T1615
Group Policy Discovery
0
T1652
Device Driver Discovery
0
T1007
System Service Discovery
0
T1040
Network Sniffing
0
T1135
Network Share Discovery
0
T1120
Peripheral Device Discovery
0
T1082
System Information Discovery
0
T1010
Application Window Discovery
0
T1580
Cloud Infrastructure Discovery
0
T1217
Browser Information Discovery
0
T1673
Virtual Machine Discovery
2
T1016
4
T1087
0
T1482
Domain Trust Discovery
0
T1083
File and Directory Discovery
0
T1049
System Network Connections Discovery
3
T1497
0
T1619
Cloud Storage Object Discovery
0
T1654
Log Enumeration
0
T1057
Process Discovery
0
T1201
Password Policy Discovery
0
T1012
Query Registry
1
T1614
0
T1526
Cloud Service Discovery
0
T1018
Remote System Discovery
0
T1046
Network Service Discovery
1
T1518
0
T1538
Cloud Service Dashboard
0
T1622
Debugger Evasion
0
T1124
System Time Discovery
Lateral Movement
9 techniques
0
T1080
Taint Shared Content
0
T1091
Replication Through Removable Media
4
T1550
8
T1021
2
T1563
0
T1072
Software Deployment Tools
0
T1210
Exploitation of Remote Services
0
T1534
Internal Spearphishing
0
T1570
Lateral Tool Transfer
Collection
17 techniques
0
T1113
Screen Capture
4
T1557
2
T1602
0
T1123
Audio Capture
3
T1114
0
T1025
Data from Removable Media
0
T1119
Automated Collection
0
T1115
Clipboard Data
0
T1530
Data from Cloud Storage
0
T1005
Data from Local System
3
T1560
0
T1185
Browser Session Hijacking
0
T1125
Video Capture
2
T1074
0
T1039
Data from Network Shared Drive
4
T1056
5
T1213
Command and Control
18 techniques
5
T1071
3
T1219
0
T1659
Content Injection
2
T1205
0
T1572
Protocol Tunneling
0
T1092
Communication Through Removable Media
4
T1090
3
T1568
3
T1102
0
T1104
Multi-Stage Channels
3
T1001
0
T1571
Non-Standard Port
2
T1573
0
T1095
Non-Application Layer Protocol
2
T1132
0
T1105
Ingress Tool Transfer
0
T1665
Hide Infrastructure
0
T1008
Fallback Channels
Exfiltration
9 techniques
4
T1567
0
T1029
Scheduled Transfer
1
T1011
1
T1020
0
T1041
Exfiltration Over C2 Channel
3
T1048
0
T1030
Data Transfer Size Limits
0
T1537
Transfer Data to Cloud Account
1
T1052
Impact
15 techniques
2
T1561
0
T1489
Service Stop
2
T1491
0
T1657
Financial Theft
3
T1565
0
T1531
Account Access Removal
0
T1486
Data Encrypted for Impact
0
T1667
Email Bombing
4
T1499
4
T1496
1
T1485
2
T1498
0
T1495
Firmware Corruption
0
T1490
Inhibit System Recovery
0
T1529
System Shutdown/Reboot

Мы используем cookie-файлы, чтобы получить статистику, которая помогает нам улучшить сервис для вас с целью персонализации сервисов и предложений. Вы может прочитать подробнее о cookie-файлах или изменить настройки браузера. Продолжая пользоваться сайтом, вы даёте согласие на использование ваших cookie-файлов и соглашаетесь с Политикой обработки персональных данных.