Contact Privacy DMCA

Robuta
https://attack.mitre.org/ MITRE ATT&CK® mitre att https://attack.mitre.org/techniques/T1574/001/ Hijack Execution Flow: DLL, Sub-technique T1574.001 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniquehijackexecutionflow https://attack.mitre.org/matrices/enterprise/ Matrix - Enterprise | MITRE ATT&CK® enterprise mitre attmatrix https://attack.mitre.org/resources/engage-with-attack/contribute/ Contribute | MITRE ATT&CK® mitre attcontribute https://attack.mitre.org/techniques/enterprise/ Techniques - Enterprise | MITRE ATT&CK® enterprise mitre atttechniques https://attack.mitre.org/techniques/T1136/ Create Account, Technique T1136 - Enterprise | MITRE ATT&CK® enterprise mitre attcreate accounttechnique https://attack.mitre.org/techniques/T1056/004/ Input Capture: Credential API Hooking, Sub-technique T1056.004 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueinputcapturecredential https://attack.mitre.org/software/S0193/ Forfiles, Software S0193 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1070/009/ Indicator Removal: Clear Persistence, Sub-technique T1070.009 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueindicatorremovalclear https://www.anomali.com/glossary/mitre-attack What is MITRE ATT&CK? Framework Explained | Anomali mitre att ckframework explainedanomali https://attack.mitre.org/techniques/T1218/003/ System Binary Proxy Execution: CMSTP, Sub-technique T1218.003 - Enterprise | MITRE ATT&CK® enterprise mitre attproxy executionsub techniquesystembinary https://attack.mitre.org/techniques/T1588/007/ Obtain Capabilities: Artificial Intelligence, Sub-technique T1588.007 - Enterprise | MITRE ATT&CK® enterprise mitre attartificial intelligencesub techniqueobtaincapabilities https://attack.mitre.org/techniques/T1102/001/ Web Service: Dead Drop Resolver, Sub-technique T1102.001 - Enterprise | MITRE ATT&CK® enterprise mitre attweb servicesub techniquedeaddrop https://attack.mitre.org/techniques/T1564/ Hide Artifacts, Technique T1564 - Enterprise | MITRE ATT&CK® enterprise mitre atthideartifactstechnique https://attack.mitre.org/techniques/T1057/ Process Discovery, Technique T1057 - Enterprise | MITRE ATT&CK® enterprise mitre attdiscovery techniqueprocess https://attack.mitre.org/techniques/T1199/ Trusted Relationship, Technique T1199 - Enterprise | MITRE ATT&CK® enterprise mitre atttrustedrelationshiptechnique https://attack.mitre.org/techniques/T1218/011/ System Binary Proxy Execution: Rundll32, Sub-technique T1218.011 - Enterprise | MITRE ATT&CK® enterprise mitre attproxy executionsub techniquesystembinary https://attack.mitre.org/techniques/T1059/006/ Command and Scripting Interpreter: Python, Sub-technique T1059.006 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniquecommandscriptinginterpreter https://cardinalops.com/use-cases/map-all-your-detections-to-mitre-attck/ Map all your detections to MITRE ATT&CK - CardinalOps mitre att ckmapdetectionscardinalops https://attack.mitre.org/techniques/T1686/ Disable or Modify System Firewall, Technique T1686 - Enterprise | MITRE ATT&CK® enterprise mitre attdisablemodifysystemfirewall https://attack.mitre.org/software/S1122/ Mispadu, Software S1122 | MITRE ATT&CK® mitre attsoftware https://www.bitdefender.com/en-us/blog/businessinsights/the-numbers-game-why-alerts-volume-and-false-positives-matter-in-mitre-attck-enterprise-evaluations-2024 The Numbers Game: Why Alerts Volume and False Positives Matter in MITRE ATT&CK® Enterprise... numbers gamefalse positivesmitre attalertsvolume https://attack.mitre.org/techniques/T1583/001/ Acquire Infrastructure: Domains, Sub-technique T1583.001 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueacquireinfrastructuredomains https://attack.mitre.org/techniques/T1105/ Ingress Tool Transfer, Technique T1105 - Enterprise | MITRE ATT&CK® enterprise mitre attingresstooltransfertechnique https://attack.mitre.org/techniques/T1033/ System Owner/User Discovery, Technique T1033 - Enterprise | MITRE ATT&CK® enterprise mitre attsystem ownerdiscovery techniqueuser https://attack.mitre.org/techniques/T1132/ Data Encoding, Technique T1132 - Enterprise | MITRE ATT&CK® enterprise mitre attdata encodingtechnique https://attack.mitre.org/software/S1130/ Raspberry Robin, Software S1130 | MITRE ATT&CK® raspberry robinmitre attsoftware https://attack.mitre.org/techniques/T1135/ Network Share Discovery, Technique T1135 - Enterprise | MITRE ATT&CK® enterprise mitre attdiscovery techniquenetworkshare https://attack.mitre.org/software/S1084/ QUIETEXIT, Software S1084 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1134/ Access Token Manipulation, Technique T1134 - Enterprise | MITRE ATT&CK® enterprise mitre attaccess tokenmanipulationtechnique https://attack.mitre.org/techniques/T1598/ Phishing for Information, Technique T1598 - Enterprise | MITRE ATT&CK® enterprise mitre attphishinginformationtechnique https://attack.mitre.org/techniques/T1497/ Virtualization/Sandbox Evasion, Technique T1497 - Enterprise | MITRE ATT&CK® enterprise mitre attvirtualizationsandboxevasiontechnique https://attack.mitre.org/techniques/T1555/ Credentials from Password Stores, Technique T1555 - Enterprise | MITRE ATT&CK® enterprise mitre attcredentialspasswordstorestechnique https://attack.mitre.org/techniques/T1021/ Remote Services, Technique T1021 - Enterprise | MITRE ATT&CK® enterprise mitre attremote servicestechnique https://attack.mitre.org/techniques/T1564/004/ Hide Artifacts: NTFS File Attributes, Sub-technique T1564.004 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniquehideartifactsntfs https://attack.mitre.org/groups/G0095/ Machete, APT-C-43, El Machete, Group G0095 | MITRE ATT&CK® mitre attmacheteaptelgroup https://www.cybereason.com/blog/2025-mitre-attck-enterprise-evaluation?hs_preview=kqbEmsDm-202718971688 Cybereason Nails 2025 MITRE ATT&CK® Enterprise Evaluation mitre attcybereasonnailsenterpriseevaluation https://attack.mitre.org/techniques/T1546/ Event Triggered Execution, Technique T1546 - Enterprise | MITRE ATT&CK® enterprise mitre atteventtriggeredexecutiontechnique https://attack.mitre.org/mitigations/M1026/ Privileged Account Management, Mitigation M1026 - Enterprise | MITRE ATT&CK® enterprise mitre attaccount managementprivilegedmitigation https://attack.mitre.org/tactics/enterprise/ Tactics - Enterprise | MITRE ATT&CK® enterprise mitre atttactics https://attack.mitre.org/software/S9021/ DOWNIISSA, Software S9021 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/software/S0455/ Metamorfo, Software S0455 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1685/ Disable or Modify Tools, Technique T1685 - Enterprise | MITRE ATT&CK® enterprise mitre attdisablemodifytoolstechnique https://stellarcyber.ai/mitre-attck-coverage-analyzer/ MITRE ATT&CK Aligned Coverage Analyzer | Stellar Cyber mitre att ckalignedcoverageanalyzerstellar https://attack.mitre.org/software/S0531/ Grandoreiro, Software S0531 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/software/S0502/ Drovorub, Software S0502 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/software/S0451/ LoudMiner, Software S0451 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/software/S0134/ Downdelph, Software S0134 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1087/001/ Account Discovery: Local Account, Sub-technique T1087.001 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueaccountdiscoverylocal https://attack.mitre.org/techniques/T1207/ Rogue Domain Controller, Technique T1207 - Enterprise | MITRE ATT&CK® enterprise mitre attroguedomaincontrollertechnique https://attack.mitre.org/techniques/T1202/ Indirect Command Execution, Technique T1202 - Enterprise | MITRE ATT&CK® enterprise mitre attcommand executionindirecttechnique https://attack.mitre.org/tactics/ics/ Tactics - ICS | MITRE ATT&CK® mitre atttactics https://attack.mitre.org/software/S0251/ Zebrocy, Software S0251 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1543/001/ Create or Modify System Process: Launch Agent, Sub-technique T1543.001 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniquecreatemodifysystem https://attack.mitre.org/techniques/T1070/004/ Indicator Removal: File Deletion, Sub-technique T1070.004 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueindicatorremovalfile https://attack.mitre.org/techniques/T1021/002/ Remote Services: SMB/Windows Admin Shares, Sub-technique T1021.002 - Enterprise | MITRE ATT&CK® enterprise mitre attremote servicessub techniquesmbwindows https://attack.mitre.org/techniques/T1090/002/ Proxy: External Proxy, Sub-technique T1090.002 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueproxyexternal https://attack.mitre.org/techniques/T1588/002/ Obtain Capabilities: Tool, Sub-technique T1588.002 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueobtaincapabilitiestool https://attack.mitre.org/resources/legal-and-branding/privacy/ Privacy Policy | MITRE ATT&CK® privacy policymitre att https://attack.mitre.org/techniques/T1655/ Masquerading, Technique T1655 - Mobile | MITRE ATT&CK® mitre atttechniquemobile https://attack.mitre.org/techniques/T1053/ Scheduled Task/Job, Technique T1053 - Enterprise | MITRE ATT&CK® enterprise mitre attscheduledtaskjobtechnique https://attack.mitre.org/analytics/ Analytics | MITRE ATT&CK® mitre attanalytics https://attack.mitre.org/techniques/T1573/001/ Encrypted Channel: Symmetric Cryptography, Sub-technique T1573.001 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueencryptedchannelsymmetric https://attack.mitre.org/software/S0137/ CORESHELL, Software S0137 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/software/S9020/ LODEINFO, Software S9020 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/software/S0002/ Mimikatz, Software S0002 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1542/003/ Pre-OS Boot: Bootkit, Sub-technique T1542.003 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniquepreosboot https://attack.mitre.org/resources/faq/ FAQ | MITRE ATT&CK® mitre attfaq https://attack.mitre.org/techniques/T1550/ Use Alternate Authentication Material, Technique T1550 - Enterprise | MITRE ATT&CK® enterprise mitre attusealternateauthenticationmaterial https://attack.mitre.org/resources/ Get Started | MITRE ATT&CK® get startedmitre att https://attack.mitre.org/mitigations/M1037/ Filter Network Traffic, Mitigation M1037 - Enterprise | MITRE ATT&CK® enterprise mitre attnetwork trafficfiltermitigation https://attack.mitre.org/software/S0089/ BlackEnergy, Software S0089 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1071/003/ Application Layer Protocol: Mail Protocols, Sub-technique T1071.003 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueapplicationlayerprotocol https://attack.mitre.org/techniques/T1056/001/ Input Capture: Keylogging, Sub-technique T1056.001 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueinputcapture https://attack.mitre.org/techniques/T1113/ Screen Capture, Technique T1113 - Enterprise | MITRE ATT&CK® enterprise mitre attscreen capturetechnique https://attack.mitre.org/techniques/T1210/ Exploitation of Remote Services, Technique T1210 - Enterprise | MITRE ATT&CK® enterprise mitre attremote servicesexploitationtechnique https://attack.mitre.org/techniques/T1046/ Network Service Discovery, Technique T1046 - Enterprise | MITRE ATT&CK® enterprise mitre attnetwork servicediscovery technique https://attack.mitre.org/software/S0154/ Cobalt Strike, Software S0154 | MITRE ATT&CK® mitre attcobaltstrikesoftware https://attack.mitre.org/techniques/T1595/002/ Active Scanning: Vulnerability Scanning, Sub-technique T1595.002 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueactivescanningvulnerability https://attack.mitre.org/tactics/TA0002/ Execution, Tactic TA0002 - Enterprise | MITRE ATT&CK® enterprise mitre attexecutiontactic https://gdpr.inforisktoday.com/whitepapers/how-to-threat-hunt-open-ndr-mitre-attck-w-14846 How to threat hunt with Open NDR + MITRE ATT&CK Utilizing Open NDR technology transforms network traffic into high-fidelity security insights. This Threat Hunting Guide was created to teach you simple and mitre attthreathuntopenndr https://www.doosandigitalinnovation.com/kr/promotion/insight/63?param1=ALL MITRE ATT&CK® 2025 평가에서 입증된 사이버리즌의 100% 탐지·가시성·정확도·SOC 효율성 mitre att https://attack.mitre.org/software/S0584/ AppleJeus, Software S0584 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/groups/G0128/ ZIRCONIUM, APT31, Violet Typhoon, Group G0128 | MITRE ATT&CK® mitre attzirconiumviolettyphoongroup https://attack.mitre.org/software/S0174/ Responder, Software S0174 | MITRE ATT&CK® mitre attrespondersoftware https://attack.mitre.org/techniques/T1591/ Gather Victim Org Information, Technique T1591 - Enterprise | MITRE ATT&CK® enterprise mitre attgathervictiminformationtechnique https://attack.mitre.org/techniques/T1055/004/ Process Injection: Asynchronous Procedure Call, Sub-technique T1055.004 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueprocessinjectionasynchronous https://attack.mitre.org/techniques/T1001/ Data Obfuscation, Technique T1001 - Enterprise | MITRE ATT&CK® enterprise mitre attdataobfuscationtechnique https://attack.mitre.org/techniques/T1176/ Software Extensions, Technique T1176 - Enterprise | MITRE ATT&CK® enterprise mitre attsoftwareextensionstechnique https://ransomware.databreachtoday.com/whitepapers/how-to-threat-hunt-open-ndr-mitre-attck-w-14846 How to threat hunt with Open NDR + MITRE ATT&CK Utilizing Open NDR technology transforms network traffic into high-fidelity security insights. This Threat Hunting Guide was created to teach you simple and mitre attthreathuntopenndr https://attack.mitre.org/groups/G1049/ AppleJeus, Gleaming Pisces, Citrine Sleet, UNC1720, UNC4736, Group G1049 | MITRE ATT&CK® mitre attgleamingpiscescitrinegroup https://attack.mitre.org/versions/v19/techniques/T1218/007/ System Binary Proxy Execution: Msiexec, Sub-technique T1218.007 - Enterprise | MITRE ATT&CK® enterprise mitre attproxy executionsub techniquesystembinary https://attack.mitre.org/software/S0108/ netsh, Software S0108 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1070/006/ Indicator Removal: Timestomp, Sub-technique T1070.006 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueindicatorremoval https://attack.mitre.org/techniques/T1003/006/ OS Credential Dumping: DCSync, Sub-technique T1003.006 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueoscredentialdumping https://attack.mitre.org/techniques/T1586/002/ Compromise Accounts: Email Accounts, Sub-technique T1586.002 - Enterprise | MITRE ATT&CK® enterprise mitre attaccounts emailsub techniquecompromise https://attack.mitre.org/software/S1039/ Bumblebee, Software S1039 | MITRE ATT&CK® mitre attbumblebeesoftware https://attack.mitre.org/techniques/T1071/001/ Application Layer Protocol: Web Protocols, Sub-technique T1071.001 - Enterprise | MITRE ATT&CK® enterprise mitre attsub techniqueapplicationlayerprotocol https://attack.mitre.org/software/S0250/ Koadic, Software S0250 | MITRE ATT&CK® mitre attsoftware https://attack.mitre.org/techniques/T1041/ Exfiltration Over C2 Channel, Technique T1041 - Enterprise | MITRE ATT&CK® enterprise mitre attexfiltrationchanneltechnique