Technique enum.
Fields |
|
|---|---|
| Name | Description |
ABUSE_ELEVATION_CONTROL_MECHANISM |
|
ABUSE_ELEVATION_CONTROL_MECHANISM_SETUID_AND_SETGID |
|
ABUSE_ELEVATION_CONTROL_MECHANISM_SUDO_AND_SUDO_CACHING |
|
ACCESS_TOKEN_MANIPULATION |
|
ACCOUNT_ACCESS_REMOVAL |
|
ACCOUNT_DISCOVERY_LOCAL_ACCOUNT |
|
ACCOUNT_MANIPULATION |
|
ACTIVE_SCANNING |
|
ADDITIONAL_CLOUD_CREDENTIALS |
|
ADDITIONAL_CLOUD_ROLES |
|
ADDITIONAL_CONTAINER_CLUSTER_ROLES |
|
APPLICATION_LAYER_PROTOCOL |
|
AUTOMATED_COLLECTION |
|
AUTOMATED_EXFILTRATION |
|
BASH_HISTORY |
|
BOOT_OR_LOGON_AUTOSTART_EXECUTION |
|
BOOT_OR_LOGON_INITIALIZATION_SCRIPTS |
|
BRUTE_FORCE |
|
CLOUD_ACCOUNTS |
|
CLOUD_GROUPS |
|
CLOUD_INFRASTRUCTURE_DISCOVERY |
|
CLOUD_SERVICE_DISCOVERY |
|
COMMAND_AND_SCRIPTING_INTERPRETER |
|
COMMAND_OBFUSCATION |
|
COMPILE_AFTER_DELIVERY |
|
COMPROMISE_HOST_SOFTWARE_BINARY |
|
COMPROMISE_SOFTWARE_DEPENDENCIES_AND_DEVELOPMENT_TOOLS |
|
CONTAINER_ADMINISTRATION_COMMAND |
|
CONTAINER_AND_RESOURCE_DISCOVERY |
|
CONTAINER_ORCHESTRATION_JOB |
|
CREATE_ACCOUNT |
|
CREATE_OR_MODIFY_SYSTEM_PROCESS |
|
CREATE_SNAPSHOT |
|
CREDENTIALS_FROM_PASSWORD_STORES |
|
CREDENTIALS_IN_FILES |
|
DATA_DESTRUCTION |
|
DATA_ENCODING |
|
DATA_ENCRYPTED_FOR_IMPACT |
|
DATA_FROM_LOCAL_SYSTEM |
|
DATA_OBFUSCATION |
|
DATA_OBFUSCATION_STEGANOGRAPHY |
|
DEFAULT_ACCOUNTS |
|
DEOBFUSCATE_DECODE_FILES_OR_INFO |
|
DEPLOY_CONTAINER |
|
DEVELOP_CAPABILITIES |
|
DEVELOP_CAPABILITIES_MALWARE |
|
DISABLE_OR_MODIFY_LINUX_AUDIT_SYSTEM |
|
DISABLE_OR_MODIFY_TOOLS |
|
DNS |
|
DOMAIN_POLICY_MODIFICATION |
|
DYNAMIC_RESOLUTION |
|
ESCAPE_TO_HOST |
|
EVENT_TRIGGERED_EXECUTION |
|
EXFILTRATION_OVER_WEB_SERVICE |
|
EXFILTRATION_TO_CLOUD_STORAGE |
|
EXPLOIT_PUBLIC_FACING_APPLICATION |
|
EXPLOITATION_FOR_CLIENT_EXECUTION |
|
EXPLOITATION_FOR_PRIVILEGE_ESCALATION |
|
EXTERNAL_PROXY |
|
FILE_AND_DIRECTORY_DISCOVERY |
|
FINANCIAL_THEFT |
|
FIRMWARE_CORRUPTION |
|
HIDDEN_FILES_AND_DIRECTORIES |
|
HIDDEN_USERS |
|
HIDE_ARTIFACTS |
|
HIJACK_EXECUTION_FLOW |
|
HIJACK_EXECUTION_FLOW_DYNAMIC_LINKER_HIJACKING |
|
IMPAIR_DEFENSES |
|
INDICATOR_BLOCKING |
|
INDICATOR_REMOVAL |
|
INDICATOR_REMOVAL_CLEAR_COMMAND_HISTORY |
|
INDICATOR_REMOVAL_CLEAR_LINUX_OR_MAC_SYSTEM_LOGS |
|
INDICATOR_REMOVAL_CLEAR_MAILBOX_DATA |
|
INDICATOR_REMOVAL_FILE_DELETION |
|
INDICATOR_REMOVAL_TIMESTOMP |
|
INGRESS_TOOL_TRANSFER |
|
INHIBIT_SYSTEM_RECOVERY |
|
INPUT_CAPTURE |
|
INPUT_CAPTURE_KEYLOGGING |
|
INSTALL_ROOT_CERTIFICATE |
|
KERNEL_MODULES_AND_EXTENSIONS |
|
LATERAL_TOOL_TRANSFER |
|
LINUX_AND_MAC_FILE_AND_DIRECTORY_PERMISSIONS_MODIFICATION |
|
LOCAL_ACCOUNT |
|
LOCAL_ACCOUNTS |
|
MASQUERADING |
|
MATCH_LEGITIMATE_NAME_OR_LOCATION |
|
MODIFY_AUTHENTICATION_PROCESS |
|
MODIFY_CLOUD_COMPUTE_INFRASTRUCTURE |
|
MULTI_FACTOR_AUTHENTICATION |
|
MULTI_HOP_PROXY |
|
MULTI_STAGE_CHANNELS |
|
NATIVE_API |
|
NETWORK_DENIAL_OF_SERVICE |
|
NETWORK_SERVICE_DISCOVERY |
|
OBFUSCATED_FILES_OR_INFO |
|
OBTAIN_CAPABILITIES |
|
OBTAIN_CAPABILITIES_MALWARE |
|
OBTAIN_CAPABILITIES_VULNERABILITIES |
|
OS_CREDENTIAL_DUMPING |
|
OS_CREDENTIAL_DUMPING_ETC_PASSWORD_AND_ETC_SHADOW |
|
OS_CREDENTIAL_DUMPING_PROC_FILESYSTEM |
|
PERMISSION_GROUPS_DISCOVERY |
|
PLUGGABLE_AUTHENTICATION_MODULES |
|
PRIVATE_KEYS |
|
PROCESS_DISCOVERY |
|
PROCESS_INJECTION |
|
PROXY |
|
PYTHON |
|
REFLECTIVE_CODE_LOADING |
|
RESOURCE_HIJACKING |
|
SCANNING_IP_BLOCKS |
|
SCHEDULED_TASK_JOB |
|
SCHEDULED_TASK_JOB_CRON |
|
SCHEDULED_TRANSFER |
|
SERVICE_STOP |
|
SHARED_MODULES |
|
SHORTCUT_MODIFICATION |
|
SOFTWARE_DEPLOYMENT_TOOLS |
|
SSH_AUTHORIZED_KEYS |
|
STAGE_CAPABILITIES |
|
STANDARD_ENCODING |
|
STARTUP_ITEMS |
|
STEAL_APPLICATION_ACCESS_TOKEN |
|
STEAL_OR_FORGE_AUTHENTICATION_CERTIFICATES |
|
STEAL_WEB_SESSION_COOKIE |
|
STEGANOGRAPHY |
|
SUBVERT_TRUST_CONTROL |
|
SUPPLY_CHAIN_COMPROMISE |
|
SYSTEM_OWNER_USER_DISCOVERY |
|
TECHNIQUE_UNSPECIFIED |
|
TOKEN_IMPERSONATION_OR_THEFT |
|
TRANSFER_DATA_TO_CLOUD_ACCOUNT |
|
UNIX_SHELL |
|
UNSECURED_CREDENTIALS |
|
UPLOAD_MALWARE |
|
USER_EXECUTION |
|
VALID_ACCOUNTS |
|