mirror of
https://github.com/MISP/misp-galaxy.git
synced 2024-11-27 01:07:18 +00:00
3430 lines
98 KiB
JSON
3430 lines
98 KiB
JSON
{
|
||
"authors": [
|
||
"Tidal Cyber"
|
||
],
|
||
"category": "Tactic",
|
||
"description": "Tidal Tactic Cluster",
|
||
"name": "Tidal Tactic",
|
||
"source": "https://app-api.tidalcyber.com/api/v1/tactic/",
|
||
"type": "tactic",
|
||
"uuid": "16b963e7-4b88-44e0-b184-16bf9e71fdc9",
|
||
"values": [
|
||
{
|
||
"description": "The adversary is trying to gather information they can use to plan future operations.\n\nReconnaissance consists of techniques that involve adversaries actively or passively gathering information that can be used to support targeting. Such information may include details of the victim organization, infrastructure, or staff/personnel. This information can be leveraged by the adversary to aid in other phases of the adversary lifecycle, such as using gathered information to plan and execute Initial Access, to scope and prioritize post-compromise objectives, or to drive and lead further Reconnaissance efforts.",
|
||
"meta": {
|
||
"ordinal_position": "1",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0043"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "4acf57da-73c1-4555-a86a-38ea4a8b962d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8f707326-d673-43ee-b269-4b6eca5b190a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "56ab198f-f8bb-4fe9-bd85-5975d4d3863b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5c3c8da1-ed0c-4b79-9794-c2fc55588ad9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cb4ec901-fe61-4b44-8ad7-7d3d9a9bc809",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ef55dc56-f2eb-4a3b-a271-3f73b4700c89",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c55c0462-d59f-4bd8-9728-05cf711917b0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "758ad44d-5e29-4c7f-8dae-ddfeb5092ccb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1f28a8a5-7231-47ad-9943-73b3cc6d05b0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a5ab5108-1582-4357-b948-1c6148c7b5ce",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4a68c72c-79c1-4fed-9107-75bb5b06dfc3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "afe743a7-56b0-4ad1-bd36-dd50d64802fc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "454be621-ea64-409c-981f-809f1238e21c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a150a804-1a17-45aa-a49f-d65ee901ab59",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "aea36489-047e-4c4a-ab26-c51fd3556182",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c0a8e0d6-c108-4c15-9a3a-78ef1da06e32",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cf79ad1b-a82b-486b-88ad-e93bfc1c7439",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a930437d-5a12-4dc4-b311-f5fd6a766c85",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2eee984c-ea00-4284-b3eb-fd0c603a5a80",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c60e4f32-d8f0-49e8-b0f7-57a6ae35b8bb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "62bc11f9-f88c-437a-98ae-e90def576e7e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9bd53629-fa2c-417d-b937-c575504be5b1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2e4201da-fe83-439d-9d40-87e4c1f832fb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "72668851-bf65-42eb-a775-bc607f4520a2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bc4f11b1-fd06-4e49-be48-e73ece82f1a9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b18ddaf9-2939-45db-8b2a-2edecc2097ac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d8dcce33-3a7e-4a1c-95c6-afdcf2fa1df6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e55d2e4b-07d8-4c22-b543-c187be320578",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "58776ca9-0c54-487f-afcc-e7e5b661bd54",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f2d216e3-43d6-4a2e-aa5b-d6be78d018b6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "40e4133b-28c2-4da7-9a6a-7392ae87f1da",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8af6a9ee-c323-44fa-85d3-29366fd1bb4f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "77476b73-f4d1-4689-8f9e-af08d27f4cba",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d97c3d34-1210-4c71-b305-59dcccab8f45",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e5d9c785-61bd-483f-b2ac-5bd9a8641b22",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a0e40412-cbfb-477b-87fc-40f2c84d26be",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "63a99eb9-0da7-4286-bfc9-c306a03abf24",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b6fe2fda-9c05-4f05-b049-7bb5b9ba5b06",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "473afdb8-5048-4838-a3fc-56be30be1e56",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ec145032-4b1b-4dbe-85bf-47360e35b0a3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b39cc340-ee1d-46a8-add2-f36aade56f15",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d93b51df-014a-4d46-949a-4b8f796e6cca",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7f953df5-c91f-4975-a579-2be3c89bca7e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "113b8750-d166-5cac-bd26-2c82c90b9d88",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "2706dc98-724b-4cf0-84b6-56cc20b0698e",
|
||
"value": "Reconnaissance"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to establish resources they can use to support operations.\n\nResource Development consists of techniques that involve adversaries creating, purchasing, or compromising/stealing resources that can be used to support targeting. Such resources include infrastructure, accounts, or capabilities. These resources can be leveraged by the adversary to aid in other phases of the adversary lifecycle, such as using purchased domains to support Command and Control, email accounts for phishing as a part of Initial Access, or stealing code signing certificates to help with Defense Evasion.",
|
||
"meta": {
|
||
"ordinal_position": "2",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0042"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "66ce76fb-5e1b-4462-9b46-d59bdfc6d3f3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c30faf84-496b-4f27-a4bc-aa36d583c69f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4c0db4e5-14e0-4fb7-88b0-bb391ce5ad58",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bae33d7b-c835-4eda-b310-bf426270c0b1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5bcbb0c5-7061-481f-a677-09028a6c59f7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0f77a14a-d450-4885-b81f-23eeffa53a7e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3426077d-3b9c-4f77-a1c6-d68f0dea670e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fe96475a-3090-449d-91fd-ae73cb4d9c7c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "be637d66-5110-4872-bc15-63b062c3f290",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f2661f07-9027-4d19-9028-d07b7511f3d5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6f152555-36a5-4ec9-8b9b-f0b32c3ccef8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3bd8c928-a7c8-4376-8f2f-2e0fcb449b37",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4b187604-88ab-4972-9836-90a04c705e10",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "49ae7bf1-a313-41d6-ad4c-74efc4c80ab6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8ecf5275-c6d1-4fe3-a24a-63fa1f3144fe",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b9f5f6b7-ecff-48c8-a23e-c58fd9e41a0d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d7594eaf-286f-4484-94fa-8608c911767a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6e4a0960-dcdc-4e42-9aa1-70d6fc3677b2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1ff8b8f4-fa76-4226-a28b-b0c25c78b2eb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "49c73c13-2281-45d3-af26-ad52a1cecb7a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2c04d7c8-67a3-4b1a-bd71-47b7c5a54b23",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c12d81d3-abe4-43d7-8a65-f4b3150e722d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c6374cbe-799a-4648-b1e2-2a66bb42d3f3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "66caa162-711c-44ac-b96d-0552cf328f84",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ec2a76e6-3530-43e1-9e80-686e4b214ac8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6824c82b-2959-4402-831a-6e7c2010d1c5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2e883e0d-1108-431a-a2dd-98ba98b69417",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4c7e52b1-9881-4966-b9b5-d88c5e88d604",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "755c1883-4046-446b-a76a-88a842dd1c2c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ef312a77-6b1a-4be6-a220-3c689e7fcd9d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fe0bf22c-efb2-4bc6-96d8-e0e909502fd7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5a57d258-0b23-431b-b50e-3150d2c0e52c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0b2a9df9-65c8-4a01-a0e6-d411e54a4c7b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "83e4f633-67fb-4d87-b1b3-8a7a2e60778b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9a2d6628-0dd7-4f25-a242-b752fcf47ff4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a6740db8-10d6-4e5b-986b-7695d3fc4b85",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f2b5a3e4-8a59-41f5-88c4-142f2da251c8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ce71e252-3403-4287-a0b5-9328fa88af96",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "68d5de9f-ca86-4bd3-bf69-524d82f7bc7a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8bdeddbe-14aa-412a-883a-7d6fe286c60e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bf660248-2098-499b-b90c-8c47efb26c70",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8842e2e3-c4f8-446b-821b-5930cb15d30c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "581722ea-81a5-4c73-a703-2c994f1cf814",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "60ac24aa-ce63-5c1d-8126-db20a27d85be",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "478da817-1914-50f6-b1fd-434081a34354",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "989d09c2-12b8-4419-9b34-a328cf295fff",
|
||
"value": "Resource Development"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to get into your network.\n\nInitial Access consists of techniques that use various entry vectors to gain their initial foothold within a network. Techniques used to gain a foothold include targeted spearphishing and exploiting weaknesses on public-facing web servers. Footholds gained through initial access may allow for continued access, like valid accounts and use of external remote services, or may be limited-use due to changing passwords.",
|
||
"meta": {
|
||
"ordinal_position": "3",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0001"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "c1f7e330-f1c4-4923-b8ad-bbd79cc63cb4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "590b55cd-7c6a-4207-b89a-3d7494623f00",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d08a9977-9fc2-46bb-84f9-dbb5187c426d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ba553ad4-5699-4458-ae4e-76e1faa43291",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "53fea37d-be26-4bed-a8a1-1d67f7cbffcf",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6a7ab25e-49ed-4cd3-b199-5d80b728b416",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b72c8a96-5e03-40c2-ac0c-f77b73fe493f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4695fd01-43a5-4aa9-ab1a-501fc0dfbd6a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6c55cf9c-0259-4ba0-9574-e90f6c88e6fd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7549c2f9-b5d2-4773-90ed-42f668aecacf",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d4a36624-50cb-43d3-95af-a2e10878a533",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a9b7eb2f-63e7-41bc-9d77-f7c4cede5406",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9953faea-d25d-4e6e-a132-8993535c5c14",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "74b99029-3f0a-4cc8-90d6-5a6b177c06eb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4557bfb9-b940-49b6-b8be-571979134419",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d4e46fe1-cc6d-4ef0-af72-a4e8dcd71381",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3c4a2f3a-5877-4a27-a417-76318523657e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "165ba336-3eab-4809-b6fd-d0dcc5478f7f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d2a19fd8-ff9c-4f9e-9e84-ed3ea12c4b7c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3f95e4f2-cd4a-502c-a12a-becb8d28440c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "350c12a3-33f6-5942-8892-4d6e70abbfc1",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "586a5b49-c566-4a57-beb4-e7c667f9c34c",
|
||
"value": "Initial Access"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to run malicious code.\n\nExecution consists of techniques that result in adversary-controlled code running on a local or remote system. Techniques that run malicious code are often paired with techniques from all other tactics to achieve broader goals, like exploring a network or stealing data. For example, an adversary might use a remote access tool to run a PowerShell script that does Remote System Discovery. ",
|
||
"meta": {
|
||
"ordinal_position": "4",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0002"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "723c6d51-91db-4658-9ee0-eafb953c2d82",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c37795d9-8970-461f-9491-3086d6b4b69a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8941d1f4-d80c-4aaa-821a-a059c2a0f854",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8a669da8-8894-4fb0-9124-c3c8418985cc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "eb1a471e-e3b5-4790-8c0a-b89b68f244b9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "82497cfd-725e-42f8-aaa7-4e20878a6a13",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3412ca73-2f25-452a-8e6e-5c28fe72ef78",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "803d286d-8104-4af8-9821-3f49240edc2b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8bc683db-1311-476f-8cae-45f3f89dcc66",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0baf02af-ffaa-403f-9f0d-da51f463a1d8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9f06ef9b-d587-41d3-8fc8-7d539dac5701",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1120f5ec-ef1b-4596-8d8b-a3979a766560",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2618638c-f6bd-4840-a297-c45076e094a9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a2184d53-63b1-4c40-81ed-da799080c36c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0b9609dd-9f19-4747-ba6e-421b6b7ff03f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8edc6345-c423-4872-9e22-11e22d9164ff",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "284bfbb3-99f0-4c3d-bc1f-ab74065b7907",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "496998fe-4066-45cf-b84a-dc428e6819c8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b84435ab-2ff4-4b6f-ba71-b4b815474872",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1bcf9fb5-6848-44d9-b394-ffbd3c357058",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6ca7838a-e8ad-43e8-9da6-15b640d1cbde",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8cc9e419-607e-4d2a-91d9-d47022e02bea",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3eafcd8b-0cb8-4d23-8785-3f80a3c897c7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "afa4e2b5-cdd8-4d54-bcdb-acee8b5649e4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f795ef6d-d2cf-440e-b871-ab19dc385789",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "068df3d7-f788-44e4-9e6b-2ae443af1609",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "68fed1c9-e060-4c4d-83d9-d8c817893d65",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a2300ed3-a502-4fe4-bad5-4aa1efc72941",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "be095bcc-4769-4010-b2db-3033d01efdbe",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0340ed34-6db2-4979-bf73-2c16855867b4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d9edb609-2ca3-43d1-9c4d-c09a2856230f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "46f60fff-71a1-4cfd-b639-71a0ac903bbb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "68427c7d-f65a-4545-abfd-13d69e5e50cf",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6051e618-c476-41db-8b0b-0aef9d2bbbf7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "af798e80-2cc5-5452-83e4-9560f08bf2d5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "944a7b91-c58e-567d-9e2c-515b93713c50",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "dad2337d-6d35-410a-acc5-da36ff83ee44",
|
||
"value": "Execution"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to maintain their foothold.\n\nPersistence consists of techniques that adversaries use to keep access to systems across restarts, changed credentials, and other interruptions that could cut off their access. Techniques used for persistence include any access, action, or configuration changes that let them maintain their foothold on systems, such as replacing or hijacking legitimate code or adding startup code. ",
|
||
"meta": {
|
||
"ordinal_position": "5",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0003"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "723c6d51-91db-4658-9ee0-eafb953c2d82",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f0dd515b-51cf-4853-a20c-02226d099ee0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c51f799b-7305-43db-8d3b-657965cad68a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "852748c2-280b-41e8-ba87-d97ec9fade70",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0a4dd066-6a28-4dcb-ab3d-215fc01db9cb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6e65f84b-cfad-49ce-9072-f2966dc02f56",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f8aa018b-5134-4201-87f2-e55d20f40b17",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c1f7e330-f1c4-4923-b8ad-bbd79cc63cb4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cd52d338-ba23-43c8-975d-4db29aa96598",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "eb1a471e-e3b5-4790-8c0a-b89b68f244b9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4050dbda-5cb0-4bd6-8444-841e55611f3a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bc996f67-7cb7-4ba4-9156-4f2f8283d66d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "032985de-5e09-4889-b8c4-84d940c6346c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "17b97c19-b986-4653-850a-44aee9aaaba1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8bd564d2-a3f1-4367-8631-a2d2cb3a1f46",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6f2186f3-c798-46e8-a26f-ae033822837b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "31c6dd3c-3eb2-46a9-ab85-9e8e145810a1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "803d286d-8104-4af8-9821-3f49240edc2b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "db846575-a79b-4403-870d-5842be82001d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "71867386-ddc2-4cdb-a0c9-7c27172c23c1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f7544b99-d596-43dd-ab12-3844756f3ad7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "69cd62f8-b729-4a05-8351-5bb961f7c6d6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ecca6c85-3d18-40c0-84d0-d5fb7ebd72b5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c2be31d9-c800-4cc7-81b9-f3fdb94fbb43",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0baf02af-ffaa-403f-9f0d-da51f463a1d8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cd65b0f4-a2a4-4291-aff2-1c65cf68cf6c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ae967542-1f37-4eea-993d-fff3867f2aea",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "040804f6-6a87-4011-8716-66682bc16ed4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d595e757-da2e-4430-95d6-81f7d69738e8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "efbbe9d1-274c-4383-9c6c-44bd4eca1829",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ffd9430b-c727-47f4-a1f0-b1d4f8c29740",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fdf95fac-f7f2-4901-b5fe-b2bafa443939",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c2cf211a-9676-4922-a386-69697ab4934a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bfde0a09-8109-41e4-b8c9-68fe20e8131b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b4f2b54c-d304-4e05-a813-69bc7e6fd1f3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8a6ec54e-c7cd-4e3c-b848-21f8be2f864a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b0a1ef13-0c54-47e8-a220-7543ba41a327",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "eff618a9-6498-4b01-bca1-cd5f3784fc27",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0df21d65-c885-415a-8f91-477ae1b37839",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "05a5318f-476d-44c1-8a85-9466295d31dd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6c55cf9c-0259-4ba0-9574-e90f6c88e6fd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2e8cd9a0-846f-416b-80ba-21a15019ce73",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "82c07e34-9f67-4f4e-a513-c22a17b508e5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b0d884c3-cf87-4610-992d-4ec54c667759",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "287201c6-56c8-458d-a6b3-5d84ad1099d7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6f42559d-fb54-4c82-9ea7-eb9c709dac07",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4659b96f-0e8d-4480-966b-c75062645f14",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "91d813d3-c17c-4c4c-b86e-0667f669a2f4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1f6a471d-49c6-4150-b213-2422d5fd3f26",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9ed0f5c3-49ff-4c43-bb77-c00e466ce3ba",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7a7e10ce-f033-460c-9183-5e29a9feb927",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "764041d4-ff10-45d0-b42e-2f23ca334740",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "83a2facf-84e7-4a3c-9dcd-74c4fd33fec6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4216058d-0912-4ff3-a7fd-dd7a7b346c96",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "34ffaa47-f591-4a44-bd7d-9790d81365cd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "33cd26b0-0248-4ee2-97a6-aab6a79824af",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6556e1cb-87d0-4e67-9d5c-343d1eddf430",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "34a112db-c61d-4ea2-872f-de3fc1af87a3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0799f2ee-3a83-452e-9fa9-83e91d83be25",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "043ffb62-dacd-4e21-9c86-b31826176283",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "05435e33-05fe-4a41-b8e4-694d45eb9147",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9cfbe3ba-957e-49fd-9494-9870e5d0ae16",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7f9dbafd-4c7e-4bd9-8aff-c2a800743a07",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bd569ff9-c038-48c0-83d0-f5c784b439bc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0ca28cc0-89d0-4680-baef-94d7202c6a9b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d6504a4d-f6d7-4517-b0fd-ec7128d4dec9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "65f7482c-485b-4fd7-80f5-0ec6e923ac4d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "74e2b24b-3bf7-4361-bc07-983bffe674f7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "68ffdbed-08d8-46a2-a833-984bbf0d9b4a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8cc9e419-607e-4d2a-91d9-d47022e02bea",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b9d60848-388e-444c-9f22-2267ea61b5e9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6fe2a6b8-bfb3-431d-8156-b2d005096f90",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1085d0c6-4ff3-45f1-8e0c-d8f334f4ba68",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a9b7eb2f-63e7-41bc-9d77-f7c4cede5406",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "60498bb5-fcfb-4d85-bf3e-26c30c08fbda",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e4495b87-9b04-4313-b771-7d9703639cce",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e1e42979-d3cd-461b-afc4-a6373cbf97ba",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cc5ae19f-981d-4004-bb74-260b8ebad73a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7ede5868-1109-4f22-abc7-9495658f7866",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3e1ef5ba-6426-4fe0-ad48-78557667d680",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "12d918e0-51f7-45cf-b67c-fa60d15599f2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "08188de6-22c8-42af-b01c-f1c250c22514",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3d52cd7c-d81b-4762-9749-612bbbccb415",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "74b99029-3f0a-4cc8-90d6-5a6b177c06eb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3701f955-596b-422e-9fce-09c4f49cf080",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6b278e5d-7383-42a4-9425-2da79bbe43e0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "36b58363-ca6a-4614-bf6f-bfaecafedb5f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3f9cd334-0b86-478f-97fa-c3aedd8035d8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6dbe030c-5f87-4b45-9b6b-5bba2c0fad00",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "03fb32fa-cdee-4e94-ae3e-16b51a10ba9c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "82d15799-9776-463e-9b87-a58d682cee55",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9dc21246-3788-48d6-b6a1-f2a39ee38557",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8b8c0f91-17fb-41fe-905c-9cbf45593877",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "46ef0f74-b028-4b35-8980-bed066feb60c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7aae1ad0-fb1f-484a-a176-c94e4c7ada77",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "55bcf759-a0bf-47e9-99f8-4e8ca997e6ce",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "45f107b6-ae8e-49d7-a3fc-ea6437fbac76",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9459a27a-b892-4864-9916-814130bea485",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7851bfe7-f149-47f5-9970-66d7cc4fdbe6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "15660958-1f4f-4136-8cda-82123fd38232",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b34ba0fd-493c-4e68-91c4-918f495ad07c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "62c22cc4-5643-4679-a6ae-9f6a3147d2fe",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bce86020-2851-4b01-97a9-e51a6b23ea68",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3c4a2f3a-5877-4a27-a417-76318523657e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6051e618-c476-41db-8b0b-0aef9d2bbbf7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f516ecd7-a6a6-4018-8e58-c007be05bdce",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b2cae050-4916-44c0-a6a3-3fa257145872",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "35197aee-8cc9-4584-bd22-33c8885db669",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "195aa08b-15fd-4019-b905-8f31bc5e2094",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6c8fa277-33c3-45b5-8f0d-9b1c0ccaf284",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d2a19fd8-ff9c-4f9e-9e84-ed3ea12c4b7c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "110c385f-9f27-4fd6-837c-6261294073ab",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f1329084-6e9c-5933-83cd-56c1bf8439e3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1169afd3-d80d-5942-b16f-8dc1812ef6bb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0719ea2b-d630-5ada-9b04-c3136ff530ae",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "ec4f9786-c00c-430a-bc6d-0d0d22fdd393",
|
||
"value": "Persistence"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to gain higher-level permissions.\n\nPrivilege Escalation consists of techniques that adversaries use to gain higher-level permissions on a system or network. Adversaries can often enter and explore a network with unprivileged access but require elevated permissions to follow through on their objectives. Common approaches are to take advantage of system weaknesses, misconfigurations, and vulnerabilities. Examples of elevated access include: \n\n* SYSTEM/root level\n* local administrator\n* user account with admin-like access \n* user accounts with access to specific system or perform specific function\n\nThese techniques often overlap with Persistence techniques, as OS features that let an adversary persist can execute in an elevated context. ",
|
||
"meta": {
|
||
"ordinal_position": "6",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0004"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "43d872bd-3d54-4ea3-bc89-a2f979db0d5a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "723c6d51-91db-4658-9ee0-eafb953c2d82",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c51f799b-7305-43db-8d3b-657965cad68a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0a4dd066-6a28-4dcb-ab3d-215fc01db9cb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6e65f84b-cfad-49ce-9072-f2966dc02f56",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f8aa018b-5134-4201-87f2-e55d20f40b17",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cd52d338-ba23-43c8-975d-4db29aa96598",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "eb1a471e-e3b5-4790-8c0a-b89b68f244b9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5e1499a1-f1ad-4929-84e1-5d33c371c02d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e082687f-d403-4246-987b-ad5f12911e4b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bc996f67-7cb7-4ba4-9156-4f2f8283d66d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "17b97c19-b986-4653-850a-44aee9aaaba1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8bd564d2-a3f1-4367-8631-a2d2cb3a1f46",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f534b0a6-4445-409a-889c-6c3ac34656f1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "31c6dd3c-3eb2-46a9-ab85-9e8e145810a1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "803d286d-8104-4af8-9821-3f49240edc2b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f7544b99-d596-43dd-ab12-3844756f3ad7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "69cd62f8-b729-4a05-8351-5bb961f7c6d6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0baf02af-ffaa-403f-9f0d-da51f463a1d8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8e332106-dd58-4adc-927d-57d038af797c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "efbbe9d1-274c-4383-9c6c-44bd4eca1829",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ffd9430b-c727-47f4-a1f0-b1d4f8c29740",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fdf95fac-f7f2-4901-b5fe-b2bafa443939",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7a6208ac-c75e-4e73-8969-0aaf6085cb6e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bebaf25b-9f50-4e3b-96cc-cc55c5765b61",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bfde0a09-8109-41e4-b8c9-68fe20e8131b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8a6ec54e-c7cd-4e3c-b848-21f8be2f864a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "eff618a9-6498-4b01-bca1-cd5f3784fc27",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0df21d65-c885-415a-8f91-477ae1b37839",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7c9035b8-ad4b-4441-be2b-823d86b54fac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6c55cf9c-0259-4ba0-9574-e90f6c88e6fd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2e8cd9a0-846f-416b-80ba-21a15019ce73",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "82c07e34-9f67-4f4e-a513-c22a17b508e5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b0d884c3-cf87-4610-992d-4ec54c667759",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ac7d9875-d18b-48f6-93e6-47c565f9526b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ef0e0599-6543-499d-8409-ef449da5c38a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e939bc27-a2cc-4278-be9b-a794c34aacbc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6f42559d-fb54-4c82-9ea7-eb9c709dac07",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "91d813d3-c17c-4c4c-b86e-0667f669a2f4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5b841b56-6b47-4cec-bf80-71a9a51fa7a0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1f6a471d-49c6-4150-b213-2422d5fd3f26",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9ed0f5c3-49ff-4c43-bb77-c00e466ce3ba",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "abccbb2a-2ea8-43b8-95dc-c583df300c07",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4216058d-0912-4ff3-a7fd-dd7a7b346c96",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2afcdcd1-ce55-4837-a84d-8279bc10f948",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6556e1cb-87d0-4e67-9d5c-343d1eddf430",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ab823cbf-0238-4347-a191-a90d84b978f7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "561da0ae-4ebc-4356-a954-338249cac31a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "043ffb62-dacd-4e21-9c86-b31826176283",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "449abc18-9faf-4ea6-a420-34528c28301d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9cfbe3ba-957e-49fd-9494-9870e5d0ae16",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f060dcca-e7d2-4711-b5d1-41cffcb731b0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7f9dbafd-4c7e-4bd9-8aff-c2a800743a07",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bd569ff9-c038-48c0-83d0-f5c784b439bc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0ca28cc0-89d0-4680-baef-94d7202c6a9b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "74e2b24b-3bf7-4361-bc07-983bffe674f7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "68ffdbed-08d8-46a2-a833-984bbf0d9b4a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8cc9e419-607e-4d2a-91d9-d47022e02bea",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1085d0c6-4ff3-45f1-8e0c-d8f334f4ba68",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a9b7eb2f-63e7-41bc-9d77-f7c4cede5406",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "77100337-67a1-4520-b25a-3ddd72b0d5ac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9cc715d7-9969-485f-87a2-c9f7ed3cc44c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e1e42979-d3cd-461b-afc4-a6373cbf97ba",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cc5ae19f-981d-4004-bb74-260b8ebad73a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "dcb323f0-0fe6-4e26-9039-4f26f10cd3a5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fd6b86c5-535b-4532-a6d8-a57a6fb04c18",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7ede5868-1109-4f22-abc7-9495658f7866",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3e1ef5ba-6426-4fe0-ad48-78557667d680",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "08188de6-22c8-42af-b01c-f1c250c22514",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3d52cd7c-d81b-4762-9749-612bbbccb415",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "74b99029-3f0a-4cc8-90d6-5a6b177c06eb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3701f955-596b-422e-9fce-09c4f49cf080",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "36b58363-ca6a-4614-bf6f-bfaecafedb5f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3f9cd334-0b86-478f-97fa-c3aedd8035d8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6dbe030c-5f87-4b45-9b6b-5bba2c0fad00",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7360117a-3404-48d0-9d4b-7f6a61c08f0e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8b8c0f91-17fb-41fe-905c-9cbf45593877",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "46ef0f74-b028-4b35-8980-bed066feb60c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1423e8c1-7cbf-4cfb-a70d-b6fe8e1a8041",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7aae1ad0-fb1f-484a-a176-c94e4c7ada77",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "45f107b6-ae8e-49d7-a3fc-ea6437fbac76",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "24e0b530-cca7-4c5c-83b2-97b83c716e42",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9459a27a-b892-4864-9916-814130bea485",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7851bfe7-f149-47f5-9970-66d7cc4fdbe6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e200d4c9-2d9c-4303-a2de-86baae85c60f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b34ba0fd-493c-4e68-91c4-918f495ad07c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c262a10e-13db-4c47-995c-87201cdf858d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d092a9e1-63d0-415d-8cd0-666a261be5d9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bce86020-2851-4b01-97a9-e51a6b23ea68",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3c4a2f3a-5877-4a27-a417-76318523657e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6051e618-c476-41db-8b0b-0aef9d2bbbf7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "232bb95b-a267-4cc2-8eb1-67ecdd5babd5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b2cae050-4916-44c0-a6a3-3fa257145872",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6c8fa277-33c3-45b5-8f0d-9b1c0ccaf284",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d2a19fd8-ff9c-4f9e-9e84-ed3ea12c4b7c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "110c385f-9f27-4fd6-837c-6261294073ab",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "71867386-ddc2-4cdb-a0c9-7c27172c23c1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1169afd3-d80d-5942-b16f-8dc1812ef6bb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4659b96f-0e8d-4480-966b-c75062645f14",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "448dc009-2d3f-5480-aba3-0d80dc4336cd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "34ffaa47-f591-4a44-bd7d-9790d81365cd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0799f2ee-3a83-452e-9fa9-83e91d83be25",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "65f7482c-485b-4fd7-80f5-0ec6e923ac4d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "15660958-1f4f-4136-8cda-82123fd38232",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "b17dde68-dbcf-4cfd-9bb8-be014ec65c37",
|
||
"value": "Privilege Escalation"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to avoid being detected.\n\nDefense Evasion consists of techniques that adversaries use to avoid detection throughout their compromise. Techniques used for defense evasion include uninstalling/disabling security software or obfuscating/encrypting data and scripts. Adversaries also leverage and abuse trusted processes to hide and masquerade their malware. Other tactics’ techniques are cross-listed here when those techniques include the added benefit of subverting defenses. ",
|
||
"meta": {
|
||
"ordinal_position": "7",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0005"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "43d872bd-3d54-4ea3-bc89-a2f979db0d5a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f0dd515b-51cf-4853-a20c-02226d099ee0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5652575d-cdb9-44ef-9c32-fff038f15444",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "81564f1d-9c72-4d03-8561-b0d255f76c5f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "852748c2-280b-41e8-ba87-d97ec9fade70",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d1836637-e61d-42bb-9067-b325a201b7c7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5c6687f6-3539-4268-a6a4-2b98fdeac0fb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f46405a6-b9a3-4124-8bce-5a786038f28f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0a4dd066-6a28-4dcb-ab3d-215fc01db9cb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "447f1d32-31f7-44b5-834a-dcba8b038e7f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "01505d46-8675-408d-881e-68f4d8743d47",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cf2b56f6-3ebd-48ec-b9d9-835397acef89",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7ae6fae6-b816-416d-8701-1cb471218fd5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5e1499a1-f1ad-4929-84e1-5d33c371c02d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e082687f-d403-4246-987b-ad5f12911e4b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "46c78b63-d079-441e-abdd-c16b39d4bab3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4050dbda-5cb0-4bd6-8444-841e55611f3a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bc996f67-7cb7-4ba4-9156-4f2f8283d66d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "032985de-5e09-4889-b8c4-84d940c6346c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "766dd13c-6ee1-41da-81cd-a22a27d68103",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "442f60ed-5195-45c3-9d8c-7e17cabe7869",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8cf19b3d-c9fa-4d71-a6ab-dc0e236e57d4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f37f0cd5-0446-415f-9309-94e25aa1165d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f534b0a6-4445-409a-889c-6c3ac34656f1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e6549d57-de83-4fee-96f1-2c4a1cdb654f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6f2186f3-c798-46e8-a26f-ae033822837b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "026c9281-07f1-4358-96d3-151fed76b1fe",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2f32c30e-b79a-497a-b05f-ab8bd93aa689",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9ca43902-5632-43e9-9dc1-84a8eafe44bd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "018381a5-df0a-4636-9df2-294101fb2092",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "69cd62f8-b729-4a05-8351-5bb961f7c6d6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e558aca4-3db1-42a0-bec2-bb9823852b49",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9449c0d5-7445-45e0-9861-7aafd6531733",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9d36254c-e568-4c03-8688-e6eed5f7510c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "95ea2f53-b6c8-4f85-a3f7-528eeadd3c48",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cd65b0f4-a2a4-4291-aff2-1c65cf68cf6c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "39d589f9-fa73-4988-95e2-2a022851d8b8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "aa6595d5-1b2e-45a8-8caf-b0968aeab2ba",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "074cf118-cd7f-41c2-bb54-43380bfa45ca",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "91e79eb9-7f99-4890-8bef-9543d307206d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "88c2fb46-877a-4005-8425-7639d0da1920",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e3be3d76-0a36-4060-8003-3b39c557f728",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8e332106-dd58-4adc-927d-57d038af797c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a0adacc1-8d2a-4e0b-92c1-3766264df4fd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "64fd8f4d-5725-46c8-a37a-020a706db1e4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7a6208ac-c75e-4e73-8969-0aaf6085cb6e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c2cf211a-9676-4922-a386-69697ab4934a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4060ad55-7ff1-4127-acad-808b2bc77655",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e8866e77-f0ca-4a19-b83e-d33dbafaf21b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ef85800b-080d-4739-9f3b-91b61314a93e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0ca01a9e-571e-4b17-a84d-23e9ce39b073",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "581c5073-4236-4c45-b8fc-37ae2dfbb65f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "97918962-6509-4369-b2b5-5d02681c6700",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b5cc9ab3-6501-4c50-904e-1a25a4088125",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "06f738c0-fbab-4d14-83ad-56240c8f35ac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "28f65214-95c1-4a72-b385-0b32cbcaea8f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4f7d0afb-92ce-429b-9ef5-dc6a7fc4f4a8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "62e5e1c5-4fee-4f05-9dd4-a6dc306a46b1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b0a1ef13-0c54-47e8-a220-7543ba41a327",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c5eb5b88-6c62-4900-9b14-c4d67d420002",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c26e1b28-89c9-4083-9f94-022c891bf60c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2618638c-f6bd-4840-a297-c45076e094a9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0dfeab84-3c42-4b56-9021-70fe5be4092b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0df21d65-c885-415a-8f91-477ae1b37839",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "edf9f7d7-bc14-4e25-800d-f508acb580d4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8352a63b-7450-4946-93c9-b7434935d794",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7c9035b8-ad4b-4441-be2b-823d86b54fac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6c55cf9c-0259-4ba0-9574-e90f6c88e6fd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b0d884c3-cf87-4610-992d-4ec54c667759",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fc34e661-55c3-47be-a368-c2f5776cdd17",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cb2e4822-2529-4216-b5b8-75158c5f85ff",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ac7d9875-d18b-48f6-93e6-47c565f9526b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ef0e0599-6543-499d-8409-ef449da5c38a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e939bc27-a2cc-4278-be9b-a794c34aacbc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ba8d0fed-e500-4060-9d31-277b7e4411fb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5b841b56-6b47-4cec-bf80-71a9a51fa7a0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d7c90fc2-b7df-4e83-96af-9cf1c428ffa3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1f6a471d-49c6-4150-b213-2422d5fd3f26",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "154dccf2-21fa-4aee-99cc-d959d841f8b1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ccb72576-4e85-4c7b-89b8-fa67cc6cdbef",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "495604b5-f74f-4224-9c3c-f8aacf8aef51",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "764041d4-ff10-45d0-b42e-2f23ca334740",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fa1507f1-c763-4af1-8bd9-a2fb8f7904be",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5e771f38-6286-4330-b7b4-38071ad6b68a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "86c2f355-3c97-44c1-9a83-e3d016f50535",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "abccbb2a-2ea8-43b8-95dc-c583df300c07",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ee177ad0-d282-42c0-91f9-7bcf724e3d31",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7ee64e42-6d3b-47f8-a2a9-55263537bd51",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f413afa2-406d-4e8e-a12c-5f1b8ef05d8a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "33cd26b0-0248-4ee2-97a6-aab6a79824af",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "49749e13-48ed-49fc-82d1-13ae13b457c1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2afcdcd1-ce55-4837-a84d-8279bc10f948",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e8eb0242-9972-4c8b-af89-7731065d79f8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "257fffe4-d17b-4e63-a41c-8388936d6215",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "63baf71d-f46f-4ac8-a3a6-8345ddd2f7a8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d54c50df-3cb8-4fff-86c4-ae5be57937ad",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "aca9cbac-5c11-4050-8d9c-2a947c89a1e8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ab823cbf-0238-4347-a191-a90d84b978f7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "34a112db-c61d-4ea2-872f-de3fc1af87a3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "487916b2-99f6-40cd-8529-5a81d2f199db",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "561da0ae-4ebc-4356-a954-338249cac31a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fe8b3b28-41ad-405b-a2b8-9c10048550c2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cb268bcf-3c2f-4583-94e3-7c9f0893e52f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "449abc18-9faf-4ea6-a420-34528c28301d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f060dcca-e7d2-4711-b5d1-41cffcb731b0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bd569ff9-c038-48c0-83d0-f5c784b439bc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "68ffdbed-08d8-46a2-a833-984bbf0d9b4a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b9d60848-388e-444c-9f22-2267ea61b5e9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b5c7edc6-0cc7-4c57-b39f-3b0474433889",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8325f2fd-35a3-4c0c-895d-7c82dd4ba2fb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9f290216-b2ab-47b5-b9ae-a94ae6d357c6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f435a5ff-78d2-44de-b464-2b5528f94adc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1085d0c6-4ff3-45f1-8e0c-d8f334f4ba68",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2507fbbc-ea9e-4e18-9329-b728847d7462",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a9b7eb2f-63e7-41bc-9d77-f7c4cede5406",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "77100337-67a1-4520-b25a-3ddd72b0d5ac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "644d820e-6f64-4404-a861-cfa8b18b42a6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "046cc07e-8700-4536-9c5b-6ecb384f52b0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "60498bb5-fcfb-4d85-bf3e-26c30c08fbda",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "aa5a31d0-1b78-481d-a317-5089c1e111bf",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7564b45e-55d9-4ffa-8e08-b08b0aa82182",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "dcb323f0-0fe6-4e26-9039-4f26f10cd3a5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "091282d8-ef05-487f-93aa-445efaeed71b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "73a8b954-93fe-466c-b73d-bd35bb08c3e7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fd6b86c5-535b-4532-a6d8-a57a6fb04c18",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b1da2b02-9ade-45e0-a795-ec1b19e5316a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "14fa2a80-c838-462d-8c34-5a98a31a65ca",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "08188de6-22c8-42af-b01c-f1c250c22514",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f22d0738-dcb7-40c2-99cf-b426ac54224a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d36a5323-e249-44e8-9c8b-5cc9c023a5e1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "74b99029-3f0a-4cc8-90d6-5a6b177c06eb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a54c7c35-b70d-42b2-aa9d-5ffd9f792fff",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3a956db0-a3f0-442a-a981-db2ee20d60b2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bd52a415-2b7a-4048-84bf-b20f385b357e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1e3d9e0a-6744-44e4-836d-1db38a4cc99c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6b278e5d-7383-42a4-9425-2da79bbe43e0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4aa6466a-f7ca-4dae-b272-73ca23f0df8f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6824cdb3-a4c5-45a8-a3d5-5a5afd347214",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5e8b76ce-b75f-449c-9d8f-573b1ffdb2bd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2ba8a662-6930-4cbe-9e3d-4cbe2109fd88",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7360117a-3404-48d0-9d4b-7f6a61c08f0e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "630a17c1-0176-4764-8f5c-a83f4f3e980f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e6dac24d-672c-4cae-82e7-2bf21014633c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "82d15799-9776-463e-9b87-a58d682cee55",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f216978a-36c0-47f1-a4ad-5ef67c8ae72c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9dc21246-3788-48d6-b6a1-f2a39ee38557",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d36695d0-e4ab-4b8a-9c65-bab3cc34ef2c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "02b8e7c1-0db7-43f5-a5bc-531b30395122",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1423e8c1-7cbf-4cfb-a70d-b6fe8e1a8041",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9ed5db23-3b2a-4a08-8602-bc8dff5c80f0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9e6268a5-a979-4219-b0ad-76094a9876c7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "24e0b530-cca7-4c5c-83b2-97b83c716e42",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "945c1564-6c13-4baa-b1d4-6ba82e06a897",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "50dd9303-b6a5-417a-860e-26f4244ff580",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "33486e3e-1104-42d0-8053-34c8c9c4d10f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7851bfe7-f149-47f5-9970-66d7cc4fdbe6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e200d4c9-2d9c-4303-a2de-86baae85c60f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9ef0ef16-b62c-4d09-b872-12c7e6adf2ed",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c262a10e-13db-4c47-995c-87201cdf858d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d092a9e1-63d0-415d-8cd0-666a261be5d9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4eb755e6-41f1-4c92-b14d-87a61a446258",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "14e81a2d-9eca-429c-9fb9-08e109de9f6c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bcaf63dc-660a-40d4-ba28-fc113b34bf51",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8592f37d-850a-43d1-86f2-cc981ad7d7dc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3c4a2f3a-5877-4a27-a417-76318523657e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ac10844f-e4ab-44a2-97b4-3d74a1fc046c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3b12e647-2bbd-4d84-9abe-401ad4230b6d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "232bb95b-a267-4cc2-8eb1-67ecdd5babd5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f516ecd7-a6a6-4018-8e58-c007be05bdce",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e0d1825e-e46a-48f2-9b28-8346a39d39b0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "195aa08b-15fd-4019-b905-8f31bc5e2094",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6c8fa277-33c3-45b5-8f0d-9b1c0ccaf284",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "49e3504a-e031-45a0-b816-1d3741a78c7f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d2a19fd8-ff9c-4f9e-9e84-ed3ea12c4b7c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "15b65bf2-dbe5-47bc-be09-ed97684bf391",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8811114c-a0cf-479c-b95d-c036467749e3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "43c2f853-cb52-4242-94e9-ec53743f3c05",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f5732b2d-0548-4574-bcc8-59ceef24aeeb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "110c385f-9f27-4fd6-837c-6261294073ab",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c41cb2d3-ff4c-5ee7-99b9-8a3d7987c9bf",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f91a7433-d5f1-5a47-8252-f02b513ce7f4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f1329084-6e9c-5933-83cd-56c1bf8439e3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "67fa2827-fd64-5bf7-bf77-27b6ffc8f77f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d8406198-626c-5659-945e-2b5105fcd0c9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ed511983-98ef-572f-b5fc-0687f48467e0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9e55bc80-a187-58f7-a687-d37bbd618db7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d9eb2887-840e-5ed7-bb4b-3b210f4147f9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "448dc009-2d3f-5480-aba3-0d80dc4336cd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e2911337-76ed-5834-b621-bb2b9a4205ee",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "20417e43-6ffa-5d36-a2ef-e27cd5a4b8f1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "04e8e75c-434e-51e0-9780-580a3823a8cb",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "8e29c6c9-0c10-4bb0-827d-ff0ab8922726",
|
||
"value": "Defense Evasion"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to steal account names and passwords.\n\nCredential Access consists of techniques for stealing credentials like account names and passwords. Techniques used to get credentials include keylogging or credential dumping. Using legitimate credentials can give adversaries access to systems, make them harder to detect, and provide the opportunity to create more accounts to help achieve their goals.",
|
||
"meta": {
|
||
"ordinal_position": "8",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0006"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "d98dbf30-c454-42ff-a9f3-2cd3319cc0d9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "852748c2-280b-41e8-ba87-d97ec9fade70",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7f1798b5-b159-441b-a5ef-3b5c706e1699",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e849ebcc-e0af-45a5-aefa-c394bb759b4e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "368f85f9-2b15-4732-80fe-087694eaf34d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "17f9e46d-4e3d-4491-a0d9-0cc042531d6e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a95e33ab-7032-4943-ab15-d526420e0cc6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a5a95893-d837-424a-979f-095a47dd9f34",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fd75ec36-fc88-4bee-9fd9-480df6d1e765",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7e8c3c70-2e9f-4fa0-b083-ff5610447dc1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1ef8a053-ff13-4a10-b9d9-0a017880e4a5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b40aa9fa-abb5-47c3-951f-2d454b9bc017",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "dc0aecef-3cb2-4381-b6e4-dfa7be16d42b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "81ae71ff-ca5e-4b87-9361-24ebc2c454b3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9448cf6f-7ba3-41d1-8710-8e6f9b0572ee",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bbad213d-477d-43bf-9501-ad7d74bac323",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cdac2469-52ca-42a8-aefe-0321a7e3d658",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cd65b0f4-a2a4-4291-aff2-1c65cf68cf6c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "888e603b-ca97-4671-aa43-a25248fc9fc8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0fef0394-7cf6-4797-8a5e-1cbfd31ee501",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a0bb264e-8617-4ae6-bafd-f52b36c63d12",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "02ed857b-ba39-4fab-b1d9-3ed2aa689dfd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b0a1ef13-0c54-47e8-a220-7543ba41a327",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b4a1cbaa-85d1-4a65-977f-494f66a141e3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "52dabfcc-b7a4-4334-9014-ab9d82f5527b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e493bf4a-0eba-4e60-a7a6-c699084dc98a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b44a263f-76b2-4a1f-baeb-dd285974eca6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ab0da102-5a14-42b1-969e-5d3daefdf0c5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e63414a7-c6f7-4bcf-a6eb-25b0c4ddbb2a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "34674b83-86a7-4ad9-8b05-49b505aa5ef0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cf4d8bb4-2d60-499d-b72c-4957660758c9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "12efebf8-9da4-446c-a627-b6f95524f1ea",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b8c27b52-3e73-448d-8a7c-3e814c8e3889",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "065d1cca-8ca5-4f8b-a333-2340706f589e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "838c5038-91e7-4648-925e-a142c8c10853",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b0966c0f-1e09-4d5d-acff-0ca79dc9da89",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f78f2c87-626a-468f-93a5-31b61be17727",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "57dd1624-42e9-42a6-b1bb-d1d1df233138",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d8507187-cea6-4be2-95b4-e875924e58c0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c0f2efd4-bfc8-43da-9859-14446fb8f289",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "afdfa503-0464-4b42-a79c-a6fc828492ef",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "40ac9bae-173e-467c-80f2-0c1513fc874d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c16eef78-232e-47a2-98e9-046ec075b13c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6d300882-d404-4f77-a19d-4a2f2b786702",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "60498bb5-fcfb-4d85-bf3e-26c30c08fbda",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e732e1d4-fffa-4fc3-b387-47782c821688",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5ee96331-a7b7-4c32-a8f1-3fb164078f5f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "03ef726b-ac65-4e23-8130-9d299a3f458a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ef7732d9-b629-4037-b5b5-579dafda080b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e7135af8-3668-4d94-90d2-2a93a6b5c327",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9503955c-fa53-452a-b717-7e23bfb4df83",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "82d15799-9776-463e-9b87-a58d682cee55",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9dc21246-3788-48d6-b6a1-f2a39ee38557",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "600d45ec-cb9c-47b8-ae94-326471ebb007",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c46432d4-bdeb-4dad-bbbd-68ad8ba6aca5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2f980aed-b34a-4300-ac6b-70e7ddf6d9be",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0a54e0f9-27eb-466b-ae47-53216e6e8065",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f516ecd7-a6a6-4018-8e58-c007be05bdce",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "28fd13d1-b555-47fa-9d47-caf6b1367ace",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6f6b88df-039c-4b69-87e0-97dfabbb49d8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "195aa08b-15fd-4019-b905-8f31bc5e2094",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f1329084-6e9c-5933-83cd-56c1bf8439e3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8e9cfd62-1a61-50dc-8f05-8a4914fd3853",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "260571a6-3c08-5419-98c5-3fa1aa8e675d",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "0c3132d5-c0df-4793-b5f2-1a95bd64ab53",
|
||
"value": "Credential Access"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to figure out your environment.\n\nDiscovery consists of techniques an adversary may use to gain knowledge about the system and internal network. These techniques help adversaries observe the environment and orient themselves before deciding how to act. They also allow adversaries to explore what they can control and what’s around their entry point in order to discover how it could benefit their current objective. Native operating system tools are often used toward this post-compromise information-gathering objective. ",
|
||
"meta": {
|
||
"ordinal_position": "9",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0007"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "86e6f1f0-290b-4971-b50e-80e98a0a768b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "41c4b4cc-99da-4323-b0f4-229906578501",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3f926f8f-7b47-4a7d-976a-269704a6bc5c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f9d61206-3063-4d04-b06f-225f4766bff1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9e366f99-7f7d-4407-8915-448a8108c7e0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d97d754d-92d5-4874-bbfe-5aa4d581f2a8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "12908bde-a5eb-40a5-ae27-d93960d0bfdc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "df5f6835-ca0a-4ef5-bb3a-b011e4025545",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "026c9281-07f1-4358-96d3-151fed76b1fe",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f14bb7ae-6ba3-4b44-b776-c79867ea9225",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e0a347e2-2ac5-458b-ab0f-18d81b6d6055",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bbad213d-477d-43bf-9501-ad7d74bac323",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ac5e465f-466d-41e4-933a-04e2c861e820",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0997d871-875e-41e4-891c-f8a4ed8b2f31",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a2961a00-450e-45a5-b293-f699d9f3b4ea",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3b2f435a-8666-43b5-9883-f2808eebd726",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b31b014b-0b59-4493-966b-a57ad68f073d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0ca01a9e-571e-4b17-a84d-23e9ce39b073",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fd346e4e-b22f-4cae-bc24-946d7b14b5e1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f1af5c8b-3210-4788-a873-97b1518bb43a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "adb6b8c1-2bdb-42b9-95da-5ce07e8796f7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6736995e-b9ea-401b-81fa-6caeb7a17ce3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "93bd112e-9494-4b60-bdc5-8b610c7ebe21",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1492c4ba-c933-47b8-953d-6de3db8cfce8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0d258912-58b1-4982-b90f-eed576f05ffc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "63baf71d-f46f-4ac8-a3a6-8345ddd2f7a8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "92761d92-a288-4407-a112-bb2720f07d07",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d76c3dde-dba5-4748-8d51-c93fc34f885e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "710ae610-0556-44e5-9de9-8be6159a23dd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cb268bcf-3c2f-4583-94e3-7c9f0893e52f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0fa8230a-fd97-4e2c-9923-923044af4291",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2bf2e498-99c8-4e36-ad4b-e675d95ac925",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7bebc801-5d5d-44b0-8da2-f37f7d88e40d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "58722f84-b119-45a8-8e29-0065688015ee",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "90e6a093-3e87-4d74-8b68-38c7d7e5e93c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9e945aa5-3883-4537-a767-f49bdcce26c7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5d0a3722-52b6-4968-a367-7ca6bc9a33fc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "00a9a4d4-928d-4d95-be31-dfac6103991f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5bab1234-8d1e-437f-88a0-d527b2dfc6cd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e9bff6ff-3142-4910-8f67-19b868912602",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "315ce434-ad6d-4dae-a1dd-6db944a44422",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "945c1564-6c13-4baa-b1d4-6ba82e06a897",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2e634ff1-a4ea-41b4-8ee9-23db4627a986",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "70ffc700-eb9b-54d7-8fd4-564bd71a6434",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4c7c0caa-b9bc-5d63-b5c3-812fdf3bba8a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "309c7c8b-c366-5762-8611-136971ac4eb4",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "ee7e5a85-a940-46e4-b408-12956f3baafa",
|
||
"value": "Discovery"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to move through your environment.\n\nLateral Movement consists of techniques that adversaries use to enter and control remote systems on a network. Following through on their primary objective often requires exploring the network to find their target and subsequently gaining access to it. Reaching their objective often involves pivoting through multiple systems and accounts to gain. Adversaries might install their own remote access tools to accomplish Lateral Movement or use legitimate credentials with native network and operating system tools, which may be stealthier. ",
|
||
"meta": {
|
||
"ordinal_position": "10",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0008"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "af7afc1e-3374-4d1c-917b-c47c305274f5",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "58987d0d-2ebf-4783-90ac-5164fe9b9e43",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7620ba3a-7877-4f87-90e3-588163ac0474",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "6a7ab25e-49ed-4cd3-b199-5d80b728b416",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "45f2613d-35dd-4ddc-a222-30e9c0dd6bf6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bc2f2c6c-ffe7-4e78-bbac-369f6781bbdd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "28f65214-95c1-4a72-b385-0b32cbcaea8f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "30ef3f13-5e9b-4712-9adf-f0da4ef157a1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c992f340-645d-412a-b509-3cbaf94919b0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c2866fd3-754e-4b40-897a-e73a8c1fcf7b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ebc5fabb-5634-49f2-8979-94ea98da114a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5e771f38-6286-4330-b7b4-38071ad6b68a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "1bcf9fb5-6848-44d9-b394-ffbd3c357058",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "51ff4ada-8a71-4801-9cb8-a6e216eaa4e4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4f4ea659-7653-4bfd-a525-b2af32c5899b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3dea57fc-3131-408b-a1fd-ff2eea1d858f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d36a5323-e249-44e8-9c8b-5cc9c023a5e1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a0f4b31b-41b7-4602-914a-f46aa815aadb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "33486e3e-1104-42d0-8053-34c8c9c4d10f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f5fb86b6-abf0-4d44-b4a0-56f0636c24d2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8592f37d-850a-43d1-86f2-cc981ad7d7dc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "351a3ac7-bf0f-5dc1-b090-5a3d3586f31d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "852bc9a9-865f-59cd-9e81-bec6e8aa8b78",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "50ba4930-7c8e-4ef9-bc36-70e7dae661eb",
|
||
"value": "Lateral Movement"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to gather data of interest to their goal.\n\nCollection consists of techniques adversaries may use to gather information and the sources information is collected from that are relevant to following through on the adversary's objectives. Frequently, the next goal after collecting data is to steal (exfiltrate) the data. Common target sources include various drive types, browsers, audio, video, and email. Common collection methods include capturing screenshots and keyboard input.",
|
||
"meta": {
|
||
"ordinal_position": "11",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0009"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "3042a254-a2a9-4cb9-9939-087a24c64907",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4462ce9d-0a5a-427d-8160-7b307b50cfbd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d98dbf30-c454-42ff-a9f3-2cd3319cc0d9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7f1798b5-b159-441b-a5ef-3b5c706e1699",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "97ef6135-47d4-4b91-8783-c0b5f331340e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8ac6952d-5add-4cbc-ad39-44943ed3459b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2be5c67a-edae-4083-8b6d-f99eaa622ed4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "41da2363-af05-46b8-990e-2cc749b5aac8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3569b783-1be5-414b-adb9-42c47ceee1cc",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ae3f9f0f-af66-424c-bcc8-4fdbd7ef9766",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8e32b6ed-58b1-4708-8b86-bd29c3a544d2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9a388756-9de0-45ea-9820-810443733789",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "107ad6c5-79b1-468c-9519-1578bee2ac49",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e8f90b73-2e59-4643-a274-78b85b8d9f88",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "77069b3f-9e42-4f1b-894f-8df568233df2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "cf76b79c-8226-4137-b3dd-8f516611b928",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c0e4f97b-f651-493f-9636-6ac2f6fb46fb",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ccf06b4a-bc33-4db1-bc66-74a0a7c31451",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0d5a5921-f643-4032-9a4a-0bb693822c21",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ebd3f870-c513-4fb0-b133-15ffc1f91db2",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b57c5554-5a46-42cd-be7e-4206f79ef424",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "52dabfcc-b7a4-4334-9014-ab9d82f5527b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b44a263f-76b2-4a1f-baeb-dd285974eca6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "34674b83-86a7-4ad9-8b05-49b505aa5ef0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0c81e13a-3608-4171-8075-9f70b2934028",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3cc64d61-7922-4e08-98ff-b76cb2173830",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "59db734e-9edb-4c92-b2ca-a72fe1e08ac7",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ef4ef020-5cd1-4859-902b-f207828a1281",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "40ac9bae-173e-467c-80f2-0c1513fc874d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "875c5aa3-6ab1-4717-9503-9818ccbad98a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5de59320-1471-4715-99c4-eda2f7996d07",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5ee96331-a7b7-4c32-a8f1-3fb164078f5f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "03ef726b-ac65-4e23-8130-9d299a3f458a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fe595943-f264-4d05-a8c7-7afc8985bfc3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "08a73f37-a04e-46be-9409-b330cbe291b4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8510638d-5be4-4986-a11c-dcbdc729a50f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "28fd13d1-b555-47fa-9d47-caf6b1367ace",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "1ca65327-b553-4923-ae19-8e6987ca250a",
|
||
"value": "Collection"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to communicate with compromised systems to control them.\n\nCommand and Control consists of techniques that adversaries may use to communicate with systems under their control within a victim network. Adversaries commonly attempt to mimic normal, expected traffic to avoid detection. There are many ways an adversary can establish command and control with various levels of stealth depending on the victim’s network structure and defenses.",
|
||
"meta": {
|
||
"ordinal_position": "12",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0011"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "f0dd515b-51cf-4853-a20c-02226d099ee0",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "972f0311-aec5-4fb5-bc5b-504c3f0cc95c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b0be2e07-e4b4-4f1a-8fce-c7a1e820a817",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "5c6c3492-5dbc-43ee-a3f2-ba1976d3b379",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ac7b9775-8323-49cb-8fef-3cef972f11ac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "abae30c8-c6b0-46ae-b464-44b66412065f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8a7afe43-b814-41b3-8bd8-e1301b8ba5b4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "acf828f4-7e7e-43e1-bf15-ceab42021430",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c2cf211a-9676-4922-a386-69697ab4934a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "bd677092-d197-4230-b94a-438cb24260fd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "350fd3f9-2d62-498f-be62-fc4b9907ff02",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0783c499-1564-4062-addc-f1ff86ef4e59",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4c2c7469-0dbc-410f-891b-1040d4f2ff0b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ba6a869a-c870-4be6-bc08-e078f0efdc3b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "987ad3da-9423-4fe0-a52b-b931c0b8b95f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a729feee-8e21-444e-8eea-2ec595b09931",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e9cc000d-174e-4e6c-9513-a0c000061700",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e54bdb49-6039-4048-9be6-657a7ff3e071",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "34a112db-c61d-4ea2-872f-de3fc1af87a3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "a4f21b08-bf5b-4ba3-af69-cce01a467859",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9ff640ed-572e-4adc-bdc6-234a9e8ef36b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "fa05c148-56a0-43ae-b8e4-2d4e91641400",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "57f95410-5735-43ae-9fec-8b628a7df985",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "36850d17-a7d5-41ac-aa89-040b9c0b2b3f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0e704680-c930-42a7-9caa-5802b8cb2c48",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f8a4c7ee-074b-4bfc-95be-43d91756b73c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ce822cce-f7f1-4753-bff1-12e5bef66d53",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4aed5968-6380-47d2-bbd7-3a4d959089e1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "eb15320a-cd24-45b2-b23f-05ef8daf1039",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "12a5e66d-6a21-4e75-a201-97235698d67d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "7d8af4f3-7d8e-4ef2-b828-40a910fc6188",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "0848222e-ddc2-489e-8ea4-e19634f6af34",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9a21ec7b-9714-4073-9bf3-4df41995c698",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4499ce34-9871-4879-883c-19ddb940f242",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2735f8d1-0e46-4cd7-bfbb-78941bb266fd",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "be8786b3-cd3d-47ef-a9e7-cd3ab3c901a1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8b744bfc-6bfb-45c5-8bb8-5b736ce7e634",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "faeec22d-dff4-496f-9c7e-14c4f2c8d054",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "584d1c76-7da9-4374-87df-e622d78fc270",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3f95e4f2-cd4a-502c-a12a-becb8d28440c",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "94ffe549-1c29-438d-9c7f-e27f7acee0bb",
|
||
"value": "Command and Control"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to steal data.\n\nExfiltration consists of techniques that adversaries may use to steal data from your network. Once they’ve collected data, adversaries often package it to avoid detection while removing it. This can include compression and encryption. Techniques for getting data out of a target network typically include transferring it over their command and control channel or an alternate channel and may also include putting size limits on the transmission.",
|
||
"meta": {
|
||
"ordinal_position": "13",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0010"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "66768217-acdd-4b52-902f-e29483630ad6",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ea0557cd-94bc-48cf-9c3b-293c40986464",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d8541e2d-6bdd-4ec0-95c4-c0f657502d5f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "38cfe608-a7e3-4e4f-9e2d-6a6ab14946f9",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "26abc19f-5968-45f1-aa1f-f35863a2f804",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "848e3552-e89d-4981-a5a5-eaf610e6eb37",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c2fc2776-e674-46ff-8b8d-ecc90b8b1c26",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "c4a8902a-bb87-4be2-bbaf-c40c9ebcbae1",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b27b273b-77e7-4243-8b48-a735857c0708",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "89203cae-d3f1-4eef-9b5a-29042eb05d19",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "192d25ea-bae1-48e4-88de-e0acd481ab88",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f424dade-21f3-4269-9940-ce64d93b97c4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ce886c55-17ab-4c1c-90dc-3aa93e69bdb4",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "dc98c882-8fba-4a10-bc6f-43088edb87af",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ab4f22d6-465f-4a16-8a40-693f2234c4ac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "36e0e8c0-ed8c-42b5-8bbf-b7cb322bc26f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "27041aa4-13e7-4d84-b1c7-02047beb5534",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8b6743e7-e856-5772-8b38-2c002602b365",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "4c34fe8b-ea13-55f9-9a2f-5948e2a2ecca",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "66249a6d-be4e-43ab-a295-349d03a98023",
|
||
"value": "Exfiltration"
|
||
},
|
||
{
|
||
"description": "The adversary is trying to manipulate, interrupt, or destroy your systems and data.\n \nImpact consists of techniques that adversaries use to disrupt availability or compromise integrity by manipulating business and operational processes. Techniques used for impact can include destroying or tampering with data. In some cases, business processes can look fine, but may have been altered to benefit the adversaries’ goals. These techniques might be used by adversaries to follow through on their end goal or to provide cover for a confidentiality breach.",
|
||
"meta": {
|
||
"ordinal_position": "14",
|
||
"source": "MITRE",
|
||
"tactic_attack_id": "TA0040"
|
||
},
|
||
"related": [
|
||
{
|
||
"dest-uuid": "14a944d3-ab95-40d8-b069-ccc4824ef46d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "66657af9-83f7-4a54-b41b-301bfcdae866",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "26db57d5-ce6f-4487-a8a8-b4af1c4b6406",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b05b5092-60f8-4324-aee3-7522753439ac",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "49ef3482-7b75-4097-b9a6-6c9cb99d865c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "ea2b3980-05fd-41a3-8ab9-3106e833c821",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d693ca8a-dacf-439e-a16b-5f6b3406a21d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e27c5756-f43e-424f-af62-b21e8b304e5d",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "2109de05-5b45-4519-94a2-6c04f7d88286",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "3ec6bb34-4134-40c3-8b67-c0aeceae4471",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "66cf4803-aec1-4396-afc1-28bc27dd8b2c",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "03619027-8a54-4cb2-8f1d-38d476edbdd8",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "9a21c7c7-cf8e-4f05-b196-86ec39653e3b",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "546a3318-0e03-4b22-95f5-c02ff69a4ebf",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b77f03e8-f7d0-4d0f-8b79-4642d0fe2709",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "847fcc8a-e74d-41e2-9f05-8d79d990cc04",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "f0c36d24-263c-4811-8784-f716c77ec6b3",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "8b0caea0-602e-4117-8322-b125150f5c2a",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d10c4a15-aeaa-4630-a7a3-3373c89a584f",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "70365fab-8531-4a0e-b147-7cabdfdef243",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e5016c2b-85fe-4e6b-917d-0dd5b441cc34",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "e6c14a7b-1fb8-4557-83e7-7f5b89717311",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "559c647a-7759-4943-856d-dc717b5a443e",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "d207c03b-fbe7-420e-a053-339f4650c043",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "761fa7fa-d7e1-4796-85b3-5cd37d55dffa",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "24787dca-6afd-4ab3-ab6c-32e9486ec418",
|
||
"type": "uses"
|
||
},
|
||
{
|
||
"dest-uuid": "b9c9fd13-c10c-5e78-aeeb-ac18dc0605f9",
|
||
"type": "uses"
|
||
}
|
||
],
|
||
"uuid": "52c0edbc-ce4d-429a-b1d5-720403e0172f",
|
||
"value": "Impact"
|
||
}
|
||
],
|
||
"version": 1
|
||
}
|