Last active
April 18, 2024 23:32
-
-
Save SyCode7/2edc9f52213c861040b3959b37785f72 to your computer and use it in GitHub Desktop.
MITRE ATT&CK Mappings to NIST 800-53 for AWS
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "name": "nist_800_53 overview", | |
| "versions": { | |
| "attack": "14", | |
| "navigator": "4.9.4", | |
| "layer": "4.5" | |
| }, | |
| "domain": "enterprise-attack", | |
| "description": "nist_800_53 heatmap overview of nist_800_53 mappings, scores are the number of associated entries", | |
| "filters": { | |
| "platforms": [ | |
| "IaaS" | |
| ] | |
| }, | |
| "sorting": 3, | |
| "layout": { | |
| "layout": "side", | |
| "aggregateFunction": "average", | |
| "showID": false, | |
| "showName": true, | |
| "showAggregateScores": false, | |
| "countUnscored": false, | |
| "expandedSubtechniques": "none" | |
| }, | |
| "hideDisabled": false, | |
| "techniques": [ | |
| { | |
| "techniqueID": "T1059", | |
| "tactic": "execution", | |
| "score": 24, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-17\n•CM-05\n•CM-08\n•CM-02\n•AC-02\n•SC-18\n•SI-07\n•SI-10\n•CA-08\n•CA-07\n•RA-05\n•SI-16\n•IA-09\n•IA-08\n•CM-06\n•AC-06\n•CM-11\n•AC-03\n•SI-02\n•AC-05\n•SI-03\n•SI-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078.001", | |
| "tactic": "defense-evasion", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •SA-16\n•SA-10\n•CA-07\n•AC-06\n•AC-05\n•SC-28\n•SA-17\n•SI-04\n•SA-08\n•AC-02\n•SA-11\n•SA-15\n•SA-03\n•SA-04", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078.001", | |
| "tactic": "persistence", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •SA-16\n•SA-10\n•CA-07\n•AC-06\n•AC-05\n•SC-28\n•SA-17\n•SI-04\n•SA-08\n•AC-02\n•SA-11\n•SA-15\n•SA-03\n•SA-04", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078.001", | |
| "tactic": "privilege-escalation", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •SA-16\n•SA-10\n•CA-07\n•AC-06\n•AC-05\n•SC-28\n•SA-17\n•SI-04\n•SA-08\n•AC-02\n•SA-11\n•SA-15\n•SA-03\n•SA-04", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078.001", | |
| "tactic": "initial-access", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •SA-16\n•SA-10\n•CA-07\n•AC-06\n•AC-05\n•SC-28\n•SA-17\n•SI-04\n•SA-08\n•AC-02\n•SA-11\n•SA-15\n•SA-03\n•SA-04", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1087.004", | |
| "tactic": "discovery", | |
| "score": 6, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-08\n•AC-06\n•AC-05\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1110.001", | |
| "tactic": "credential-access", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CA-07\n•AC-06\n•CM-06\n•IA-11\n•AC-05\n•CM-02\n•SI-04\n•AC-07\n•AC-02\n•AC-20\n•IA-04\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1110.003", | |
| "tactic": "credential-access", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CA-07\n•AC-06\n•CM-06\n•IA-11\n•AC-05\n•CM-02\n•SI-04\n•AC-07\n•AC-02\n•AC-20\n•IA-04\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1110.004", | |
| "tactic": "credential-access", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CA-07\n•AC-06\n•CM-06\n•IA-11\n•AC-05\n•CM-02\n•SI-04\n•AC-07\n•AC-02\n•AC-20\n•IA-04\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1119", | |
| "tactic": "collection", | |
| "score": 17, | |
| "color": "", | |
| "comment": " Related to: \n •AC-18\n•AC-17\n•CM-06\n•AC-16\n•CM-08\n•SI-12\n•SI-23\n•SC-04\n•CM-02\n•CP-09\n•SI-04\n•SI-07\n•SC-36\n•CP-06\n•AC-19\n•AC-20\n•CP-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1199", | |
| "tactic": "initial-access", | |
| "score": 8, | |
| "color": "", | |
| "comment": " Related to: \n •CM-06\n•AC-06\n•AC-03\n•SC-46\n•AC-04\n•SC-07\n•CM-07\n•AC-08", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1201", | |
| "tactic": "discovery", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •CA-07\n•CM-06\n•CM-02\n•SI-03\n•SI-04", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1204", | |
| "tactic": "execution", | |
| "score": 13, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•SI-02\n•SI-08\n•CA-07\n•CM-06\n•SC-44\n•CM-02\n•SI-03\n•SI-04\n•AC-04\n•SI-07\n•SC-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1204.003", | |
| "tactic": "execution", | |
| "score": 18, | |
| "color": "", | |
| "comment": " Related to: \n •SR-04\n•CA-08\n•SI-02\n•SI-08\n•CA-07\n•CM-06\n•RA-05\n•SC-44\n•SR-11\n•CM-02\n•SI-03\n•SI-04\n•SR-05\n•SR-06\n•AC-04\n•SI-07\n•SC-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1213", | |
| "tactic": "collection", | |
| "score": 24, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-17\n•CM-05\n•CM-08\n•CM-02\n•AC-02\n•AC-04\n•SI-07\n•AC-21\n•CA-08\n•CA-07\n•AC-16\n•RA-05\n•AC-23\n•SC-28\n•CM-03\n•IA-08\n•CM-06\n•AC-06\n•IA-04\n•AC-03\n•AC-05\n•SI-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1486", | |
| "tactic": "impact", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •CP-10\n•CP-02\n•AC-06\n•CM-02\n•CP-09\n•SI-03\n•SI-04\n•CP-06\n•SI-07\n•CP-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1491", | |
| "tactic": "impact", | |
| "score": 10, | |
| "color": "", | |
| "comment": " Related to: \n •CP-10\n•CP-02\n•AC-06\n•CM-02\n•CP-09\n•SI-03\n•SI-04\n•SI-07\n•CP-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1491.002", | |
| "tactic": "impact", | |
| "score": 10, | |
| "color": "", | |
| "comment": " Related to: \n •CP-10\n•CP-02\n•AC-06\n•CM-02\n•CP-09\n•SI-03\n•SI-04\n•SI-07\n•CP-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1498", | |
| "tactic": "impact", | |
| "score": 8, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•CA-07\n•CM-06\n•SI-15\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1498.001", | |
| "tactic": "impact", | |
| "score": 8, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•CA-07\n•CM-06\n•SI-15\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1498.002", | |
| "tactic": "impact", | |
| "score": 8, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•CA-07\n•CM-06\n•SI-15\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1499.003", | |
| "tactic": "impact", | |
| "score": 9, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•CA-07\n•CM-06\n•SI-15\n•SI-04\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1499.004", | |
| "tactic": "impact", | |
| "score": 9, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•CA-07\n•CM-06\n•SI-15\n•SI-04\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1525", | |
| "tactic": "persistence", | |
| "score": 16, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-08\n•SI-02\n•CM-05\n•AC-06\n•CM-06\n•RA-05\n•AC-05\n•CM-02\n•SI-03\n•IA-09\n•SI-04\n•AC-02\n•SI-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1535", | |
| "tactic": "defense-evasion", | |
| "score": 1, | |
| "color": "", | |
| "comment": " Related to: \n •SC-23", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1537", | |
| "tactic": "exfiltration", | |
| "score": 20, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-17\n•CM-05\n•AC-02\n•AC-04\n•SI-10\n•CA-07\n•AC-16\n•IA-03\n•IA-08\n•CM-06\n•AC-06\n•IA-04\n•AC-03\n•AC-05\n•SI-15\n•SI-04\n•AC-20\n•SC-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1538", | |
| "tactic": "discovery", | |
| "score": 6, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-08\n•AC-06\n•AC-05\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1546", | |
| "tactic": "privilege-escalation", | |
| "score": 4, | |
| "color": "", | |
| "comment": " Related to: \n •CM-02\n•IA-09\n•SI-07\n•CM-06", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1546", | |
| "tactic": "persistence", | |
| "score": 4, | |
| "color": "", | |
| "comment": " Related to: \n •CM-02\n•IA-09\n•SI-07\n•CM-06", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1550", | |
| "tactic": "defense-evasion", | |
| "score": 7, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1550", | |
| "tactic": "lateral-movement", | |
| "score": 7, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1550.004", | |
| "tactic": "defense-evasion", | |
| "score": 3, | |
| "color": "", | |
| "comment": " Related to: \n •SC-08\n•SC-23\n•SI-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1550.004", | |
| "tactic": "lateral-movement", | |
| "score": 3, | |
| "color": "", | |
| "comment": " Related to: \n •SC-08\n•SC-23\n•SI-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556.006", | |
| "tactic": "credential-access", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-06\n•IA-11\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556.006", | |
| "tactic": "defense-evasion", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-06\n•IA-11\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556.006", | |
| "tactic": "persistence", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-06\n•IA-11\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556.007", | |
| "tactic": "credential-access", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-06\n•IA-11\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556.007", | |
| "tactic": "defense-evasion", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-06\n•IA-11\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556.007", | |
| "tactic": "persistence", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-06\n•IA-11\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1578.001", | |
| "tactic": "defense-evasion", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-08\n•CM-05\n•AC-06\n•RA-05\n•AC-05\n•SI-04\n•AC-02\n•IA-06\n•IA-04\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1578.002", | |
| "tactic": "defense-evasion", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-08\n•CM-05\n•AC-06\n•RA-05\n•AC-05\n•SI-04\n•AC-02\n•IA-06\n•IA-04\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1578.003", | |
| "tactic": "defense-evasion", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-08\n•CM-05\n•AC-06\n•RA-05\n•AC-05\n•SI-04\n•AC-02\n•IA-06\n•IA-04\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1580", | |
| "tactic": "discovery", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-06\n•AC-05\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1606.001", | |
| "tactic": "credential-access", | |
| "score": 4, | |
| "color": "", | |
| "comment": " Related to: \n •AC-06\n•SI-02\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1606.002", | |
| "tactic": "credential-access", | |
| "score": 3, | |
| "color": "", | |
| "comment": " Related to: \n •AC-06\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1619", | |
| "tactic": "discovery", | |
| "score": 7, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-17\n•CM-05\n•AC-06\n•AC-05\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1648", | |
| "tactic": "execution", | |
| "score": 8, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CM-06\n•AC-06\n•SI-04\n•AC-02\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1654", | |
| "tactic": "discovery", | |
| "score": 4, | |
| "color": "", | |
| "comment": " Related to: \n •AC-06\n•AC-04\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1621", | |
| "tactic": "credential-access", | |
| "score": 6, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•AC-06\n•IA-03\n•AC-02", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1606", | |
| "tactic": "credential-access", | |
| "score": 6, | |
| "color": "", | |
| "comment": " Related to: \n •SI-02\n•SC-17\n•AC-06\n•AC-05\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1562.008", | |
| "tactic": "defense-evasion", | |
| "score": 7, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CM-05\n•AC-06\n•AC-05\n•CM-03\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1562.007", | |
| "tactic": "defense-evasion", | |
| "score": 6, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CM-05\n•AC-06\n•AC-05\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1562.001", | |
| "tactic": "defense-evasion", | |
| "score": 13, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-07\n•AC-06\n•CM-05\n•CM-06\n•AC-05\n•CM-02\n•SI-03\n•SI-04\n•AC-02\n•SI-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1562", | |
| "tactic": "defense-evasion", | |
| "score": 17, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-08\n•CA-07\n•AC-06\n•CM-05\n•CM-06\n•RA-05\n•AC-05\n•CM-02\n•SI-03\n•SC-08\n•SI-04\n•AC-02\n•IA-04\n•SI-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1550.001", | |
| "tactic": "defense-evasion", | |
| "score": 16, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-08\n•CM-10\n•AC-17\n•CM-06\n•AC-16\n•SI-12\n•CM-11\n•CM-02\n•SC-28\n•SC-08\n•SI-04\n•SI-07\n•AC-19\n•AC-20\n•IA-04", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1550.001", | |
| "tactic": "lateral-movement", | |
| "score": 16, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-08\n•CM-10\n•AC-17\n•CM-06\n•AC-16\n•SI-12\n•CM-11\n•CM-02\n•SC-28\n•SC-08\n•SI-04\n•SI-07\n•AC-19\n•AC-20\n•IA-04", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1530", | |
| "tactic": "collection", | |
| "score": 33, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-17\n•CM-05\n•CM-08\n•SI-12\n•CM-02\n•AC-02\n•IA-06\n•AC-19\n•AC-04\n•SI-07\n•AC-18\n•SI-10\n•CA-08\n•CA-07\n•AC-16\n•RA-05\n•IA-03\n•SC-28\n•AC-07\n•IA-05\n•IA-08\n•CM-06\n•AC-06\n•IA-04\n•AC-03\n•SC-04\n•AC-05\n•SI-15\n•SI-04\n•AC-20\n•SC-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1211", | |
| "tactic": "defense-evasion", | |
| "score": 23, | |
| "color": "", | |
| "comment": " Related to: \n •SC-02\n•CM-08\n•SI-05\n•CM-02\n•SC-18\n•AC-04\n•SI-07\n•CA-08\n•CA-07\n•RA-05\n•SC-39\n•SC-29\n•CM-06\n•AC-06\n•SC-03\n•RA-10\n•SI-02\n•SC-30\n•SC-35\n•SI-03\n•SI-04\n•SC-26\n•SC-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1190", | |
| "tactic": "initial-access", | |
| "score": 29, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SC-02\n•CM-05\n•CM-08\n•SC-46\n•SA-08\n•AC-02\n•SC-18\n•AC-04\n•SI-07\n•SI-10\n•CA-07\n•RA-05\n•SC-39\n•SC-29\n•IA-08\n•CM-06\n•AC-06\n•SC-03\n•AC-03\n•RA-10\n•SI-02\n•SC-30\n•CA-02\n•AC-05\n•SI-03\n•SI-04\n•SC-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1098.001", | |
| "tactic": "persistence", | |
| "score": 15, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•SC-46\n•SI-04\n•AC-02\n•SI-07\n•AC-04\n•AC-20\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1098.001", | |
| "tactic": "privilege-escalation", | |
| "score": 15, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•SC-46\n•SI-04\n•AC-02\n•SI-07\n•AC-04\n•AC-20\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1087", | |
| "tactic": "discovery", | |
| "score": 3, | |
| "color": "", | |
| "comment": " Related to: \n •CM-06\n•SI-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1552.001", | |
| "tactic": "credential-access", | |
| "score": 18, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CA-08\n•SA-15\n•CA-07\n•AC-06\n•CM-06\n•RA-05\n•SC-04\n•SC-12\n•AC-05\n•CM-02\n•SC-28\n•SI-04\n•AC-02\n•SA-11\n•AC-04\n•SC-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1499.002", | |
| "tactic": "impact", | |
| "score": 9, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•CA-07\n•CM-06\n•SI-15\n•SI-04\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1499", | |
| "tactic": "impact", | |
| "score": 9, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•CA-07\n•CM-06\n•SI-15\n•SI-04\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1485", | |
| "tactic": "impact", | |
| "score": 10, | |
| "color": "", | |
| "comment": " Related to: \n •CP-10\n•CP-02\n•AC-06\n•CM-02\n•CP-09\n•SI-03\n•SI-04\n•SI-07\n•CP-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1136", | |
| "tactic": "persistence", | |
| "score": 15, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•SC-46\n•SI-04\n•AC-02\n•SI-07\n•AC-04\n•AC-20\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1110", | |
| "tactic": "credential-access", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CA-07\n•AC-06\n•CM-06\n•IA-11\n•AC-05\n•CM-02\n•SI-04\n•AC-07\n•AC-02\n•AC-20\n•IA-04\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1046", | |
| "tactic": "discovery", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •CA-07\n•CM-06\n•CM-08\n•RA-05\n•CM-02\n•SC-46\n•SI-03\n•SI-04\n•AC-04\n•SC-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1578", | |
| "tactic": "defense-evasion", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CA-08\n•CM-05\n•AC-06\n•RA-05\n•AC-05\n•SI-04\n•AC-02\n•IA-06\n•IA-04\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556", | |
| "tactic": "credential-access", | |
| "score": 16, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CA-07\n•AC-06\n•CM-05\n•CM-06\n•AC-05\n•CM-02\n•SI-04\n•AC-07\n•AC-02\n•SC-39\n•SI-07\n•AC-20\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556", | |
| "tactic": "defense-evasion", | |
| "score": 16, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CA-07\n•AC-06\n•CM-05\n•CM-06\n•AC-05\n•CM-02\n•SI-04\n•AC-07\n•AC-02\n•SC-39\n•SI-07\n•AC-20\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1556", | |
| "tactic": "persistence", | |
| "score": 16, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CA-07\n•AC-06\n•CM-05\n•CM-06\n•AC-05\n•CM-02\n•SI-04\n•AC-07\n•AC-02\n•SC-39\n•SI-07\n•AC-20\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1552", | |
| "tactic": "credential-access", | |
| "score": 33, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-17\n•CM-05\n•SI-12\n•SC-12\n•CM-02\n•AC-02\n•SA-11\n•AC-19\n•AC-04\n•SI-07\n•AC-18\n•SI-10\n•CA-08\n•CA-07\n•AC-16\n•RA-05\n•IA-03\n•SC-28\n•IA-05\n•CM-06\n•AC-06\n•IA-04\n•AC-03\n•SI-02\n•SC-04\n•AC-05\n•SI-15\n•SI-04\n•SA-15\n•AC-20\n•SC-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1548", | |
| "tactic": "privilege-escalation", | |
| "score": 21, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SI-12\n•CM-05\n•CM-08\n•CM-02\n•AC-02\n•SC-18\n•SI-07\n•CA-08\n•SC-34\n•CA-07\n•AC-16\n•RA-05\n•SI-16\n•CM-06\n•AC-06\n•AC-03\n•AC-05\n•SI-03\n•SI-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1548", | |
| "tactic": "defense-evasion", | |
| "score": 21, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SI-12\n•CM-05\n•CM-08\n•CM-02\n•AC-02\n•SC-18\n•SI-07\n•CA-08\n•SC-34\n•CA-07\n•AC-16\n•RA-05\n•SI-16\n•CM-06\n•AC-06\n•AC-03\n•AC-05\n•SI-03\n•SI-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1490", | |
| "tactic": "impact", | |
| "score": 13, | |
| "color": "", | |
| "comment": " Related to: \n •CP-10\n•CP-02\n•CM-06\n•AC-06\n•CM-02\n•CP-09\n•SI-03\n•SI-04\n•AC-02\n•SI-07\n•CP-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078", | |
| "tactic": "defense-evasion", | |
| "score": 25, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SA-10\n•IA-12\n•CM-05\n•SA-08\n•AC-02\n•SA-11\n•CA-07\n•RA-05\n•SC-28\n•SA-17\n•CA-03\n•SC-43\n•IA-05\n•CM-06\n•AC-06\n•SA-03\n•AC-03\n•AC-05\n•SI-04\n•SR-06\n•SA-15\n•SC-07\n•SA-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078", | |
| "tactic": "persistence", | |
| "score": 25, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SA-10\n•IA-12\n•CM-05\n•SA-08\n•AC-02\n•SA-11\n•CA-07\n•RA-05\n•SC-28\n•SA-17\n•CA-03\n•SC-43\n•IA-05\n•CM-06\n•AC-06\n•SA-03\n•AC-03\n•AC-05\n•SI-04\n•SR-06\n•SA-15\n•SC-07\n•SA-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078", | |
| "tactic": "privilege-escalation", | |
| "score": 25, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SA-10\n•IA-12\n•CM-05\n•SA-08\n•AC-02\n•SA-11\n•CA-07\n•RA-05\n•SC-28\n•SA-17\n•CA-03\n•SC-43\n•IA-05\n•CM-06\n•AC-06\n•SA-03\n•AC-03\n•AC-05\n•SI-04\n•SR-06\n•SA-15\n•SC-07\n•SA-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078", | |
| "tactic": "initial-access", | |
| "score": 25, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SA-10\n•IA-12\n•CM-05\n•SA-08\n•AC-02\n•SA-11\n•CA-07\n•RA-05\n•SC-28\n•SA-17\n•CA-03\n•SC-43\n•IA-05\n•CM-06\n•AC-06\n•SA-03\n•AC-03\n•AC-05\n•SI-04\n•SR-06\n•SA-15\n•SC-07\n•SA-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1048", | |
| "tactic": "exfiltration", | |
| "score": 23, | |
| "color": "", | |
| "comment": " Related to: \n •CM-02\n•SC-46\n•SA-08\n•AC-02\n•AC-04\n•SI-10\n•CA-07\n•AC-16\n•AC-23\n•SC-31\n•SC-28\n•CA-03\n•SA-09\n•CM-06\n•AC-06\n•AC-03\n•SR-04\n•SI-15\n•SI-03\n•SI-04\n•AC-20\n•SC-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1651", | |
| "tactic": "execution", | |
| "score": 6, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-17\n•AC-06\n•SI-04\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1578.005", | |
| "tactic": "defense-evasion", | |
| "score": 5, | |
| "color": "", | |
| "comment": " Related to: \n •AC-06\n•CM-03\n•AC-02\n•AC-20\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1555.006", | |
| "tactic": "credential-access", | |
| "score": 4, | |
| "color": "", | |
| "comment": " Related to: \n •AC-06\n•AC-02\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1548.005", | |
| "tactic": "privilege-escalation", | |
| "score": 4, | |
| "color": "", | |
| "comment": " Related to: \n •CM-05\n•AC-06\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1548.005", | |
| "tactic": "defense-evasion", | |
| "score": 4, | |
| "color": "", | |
| "comment": " Related to: \n •CM-05\n•AC-06\n•AC-02\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1059.009", | |
| "tactic": "execution", | |
| "score": 6, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•AC-06\n•SI-04\n•AC-02\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1021.008", | |
| "tactic": "lateral-movement", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-05\n•IA-02\n•AC-17\n•CM-05\n•CM-06\n•AC-06\n•SI-04\n•AC-02\n•AC-20\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1021.007", | |
| "tactic": "lateral-movement", | |
| "score": 7, | |
| "color": "", | |
| "comment": " Related to: \n •IA-05\n•IA-02\n•AC-06\n•AC-05\n•AC-02\n•AC-20\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1555", | |
| "tactic": "credential-access", | |
| "score": 6, | |
| "color": "", | |
| "comment": " Related to: \n •IA-05\n•CA-07\n•AC-06\n•SI-04\n•AC-20\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1552.005", | |
| "tactic": "credential-access", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •SI-10\n•AC-17\n•CA-07\n•AC-16\n•CM-06\n•IA-03\n•SI-15\n•SI-04\n•IA-04\n•AC-04\n•AC-20\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078.004", | |
| "tactic": "defense-evasion", | |
| "score": 23, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SA-10\n•IA-12\n•CM-05\n•SA-08\n•AC-02\n•SA-11\n•CA-07\n•SC-28\n•SA-17\n•AC-07\n•SC-43\n•IA-05\n•CM-06\n•AC-06\n•SA-03\n•AC-03\n•AC-05\n•SI-04\n•SA-15\n•AC-20\n•SA-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078.004", | |
| "tactic": "persistence", | |
| "score": 23, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SA-10\n•IA-12\n•CM-05\n•SA-08\n•AC-02\n•SA-11\n•CA-07\n•SC-28\n•SA-17\n•AC-07\n•SC-43\n•IA-05\n•CM-06\n•AC-06\n•SA-03\n•AC-03\n•AC-05\n•SI-04\n•SA-15\n•AC-20\n•SA-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078.004", | |
| "tactic": "privilege-escalation", | |
| "score": 23, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SA-10\n•IA-12\n•CM-05\n•SA-08\n•AC-02\n•SA-11\n•CA-07\n•SC-28\n•SA-17\n•AC-07\n•SC-43\n•IA-05\n•CM-06\n•AC-06\n•SA-03\n•AC-03\n•AC-05\n•SI-04\n•SA-15\n•AC-20\n•SA-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1078.004", | |
| "tactic": "initial-access", | |
| "score": 23, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•SA-10\n•IA-12\n•CM-05\n•SA-08\n•AC-02\n•SA-11\n•CA-07\n•SC-28\n•SA-17\n•AC-07\n•SC-43\n•IA-05\n•CM-06\n•AC-06\n•SA-03\n•AC-03\n•AC-05\n•SI-04\n•SA-15\n•AC-20\n•SA-04\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1040", | |
| "tactic": "credential-access", | |
| "score": 12, | |
| "color": "", | |
| "comment": " Related to: \n •AC-18\n•IA-02\n•IA-05\n•AC-17\n•SI-12\n•AC-16\n•SC-04\n•SI-04\n•SC-08\n•AC-19\n•SI-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1040", | |
| "tactic": "discovery", | |
| "score": 12, | |
| "color": "", | |
| "comment": " Related to: \n •AC-18\n•IA-02\n•IA-05\n•AC-17\n•SI-12\n•AC-16\n•SC-04\n•SI-04\n•SC-08\n•AC-19\n•SI-07\n•CM-07", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1021", | |
| "tactic": "lateral-movement", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•AC-17\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•CM-02\n•SI-04\n•AC-07\n•AC-02\n•AC-20\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1098", | |
| "tactic": "persistence", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•SI-04\n•AC-02\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1098", | |
| "tactic": "privilege-escalation", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•SI-04\n•AC-02\n•AC-04\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1098.003", | |
| "tactic": "persistence", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•CM-06\n•AC-06\n•AC-05\n•SI-04\n•AC-02\n•AC-20\n•SI-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1098.003", | |
| "tactic": "privilege-escalation", | |
| "score": 11, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•CM-06\n•AC-06\n•AC-05\n•SI-04\n•AC-02\n•AC-20\n•SI-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1098.004", | |
| "tactic": "persistence", | |
| "score": 15, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•AC-06\n•CM-06\n•CM-08\n•RA-05\n•SC-12\n•AC-05\n•CM-02\n•SI-03\n•SI-04\n•AC-20\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1098.004", | |
| "tactic": "privilege-escalation", | |
| "score": 15, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•AC-06\n•CM-06\n•CM-08\n•RA-05\n•SC-12\n•AC-05\n•CM-02\n•SI-03\n•SI-04\n•AC-20\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1136.003", | |
| "tactic": "persistence", | |
| "score": 14, | |
| "color": "", | |
| "comment": " Related to: \n •IA-02\n•IA-05\n•CM-05\n•AC-06\n•CM-06\n•AC-05\n•SI-04\n•AC-02\n•SI-07\n•AC-04\n•AC-20\n•SC-07\n•CM-07\n•AC-03", | |
| "enabled": true, | |
| "metadata": [], | |
| "links": [], | |
| "showSubtechniques": false | |
| } | |
| ], | |
| "gradient": { | |
| "colors": [ | |
| "#ffe766ff", | |
| "#ffaf66ff" | |
| ], | |
| "minValue": 1, | |
| "maxValue": 33 | |
| }, | |
| "legendItems": [], | |
| "metadata": [], | |
| "links": [], | |
| "showTacticRowBackground": false, | |
| "tacticRowBackground": "#dddddd", | |
| "selectTechniquesAcrossTactics": true, | |
| "selectSubtechniquesWithParent": false, | |
| "selectVisibleTechniques": false | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment