MITRE ATT&CK

Adversary tactics and techniques framework

691

Techniques

Tactics

Mitigations

4.362

Actor-Technique Links

Filter by tactic

Platforms

Main techniques only

MITRE ATT&CK 691

Show:

ID	Techniques	Tactic	Platforms	Threat Actors
T1001	Data Obfuscation	Command and Control	ESXi, Linux, macOS...	1
T1001.001	Junk Data Sub	Command and Control	ESXi, Linux, macOS...	1
T1001.002	Steganography Sub	Command and Control	Linux, macOS, Window...	1
T1001.003	Protocol or Service Impersonation Sub	Command and Control	ESXi, Linux, macOS...	3
T1003	OS Credential Dumping	Credential Access	Linux, macOS, Window	13
T1003.001	LSASS Memory Sub	Credential Access	Windows	42
T1003.002	Security Account Manager Sub	Credential Access	Windows	13
T1003.003	NTDS Sub	Credential Access	Windows	17
T1003.004	LSA Secrets Sub	Credential Access	Windows	10
T1003.005	Cached Domain Credentials Sub	Credential Access	Windows, Linux	4
T1003.006	DCSync Sub	Credential Access	Windows	4
T1003.007	Proc Filesystem Sub	Credential Access	Linux	0
T1003.008	/etc/passwd and /etc/shadow Sub	Credential Access	Linux	0
T1005	Data from Local System	Collection	ESXi, Linux, macOS...	43
T1006	Direct Volume Access	Defense Evasion	Network Devices, Win	2
T1007	System Service Discovery	Discovery	Linux, macOS, Window	14
T1008	Fallback Channels	Command and Control	Linux, Windows, macO...	5
T1010	Application Window Discovery	Discovery	Linux, Windows, macO	3
T1011	Exfiltration Over Other Network Medium	Exfiltration	Linux, macOS, Window	0
T1011.001	Exfiltration Over Bluetooth Sub	Exfiltration	Linux, macOS, Window	0
T1012	Query Registry	Discovery	Windows	19
T1014	Rootkit	Defense Evasion	Linux, macOS, Window	6
T1016	System Network Configuration Discovery	Discovery	ESXi, Linux, macOS...	42
T1016.001	Internet Connection Discovery Sub	Discovery	Windows, Linux, macO...	11
T1016.002	Wi-Fi Discovery Sub	Discovery	Linux, Windows, macO	1