MITRE ATT&CK
Adversary tactics and techniques framework
714
Techniques
14
Tactics
0
Mitigations
4.632
Actor-Technique Links
MITRE ATT&CK 714
| ID | Techniques | Tactic | Platforms | Threat Actors | Actions |
|---|---|---|---|---|---|
| T1571 | Non-Standard Port | Command and Control | ESXi, Linux, macOS... | 17 | |
| T1572 | Protocol Tunneling | Command and Control | ESXi, Linux, macOS... | 15 | |
| T1573 | Encrypted Channel | Command and Control | ESXi, Linux, macOS... | 4 | |
| T1573.001 | Symmetric Cryptography Sub | Command and Control | ESXi, Linux, macOS... | 14 | |
| T1573.002 | Asymmetric Cryptography Sub | Command and Control | ESXi, Linux, macOS... | 11 | |
| T1574 | Hijack Execution Flow | Execution, Persistence, P... | Linux, macOS, Window | 0 | |
| T1574.001 | DLL Sub | Execution, Persistence, P... | Windows | 35 | |
| T1574.004 | Dylib Hijacking Sub | Execution, Persistence, P... | macOS | 0 | |
| T1574.005 | Executable Installer File Permissions Weakness Sub | Execution, Persistence, P... | Windows | 1 | |
| T1574.006 | Dynamic Linker Hijacking Sub | Execution, Persistence, P... | Linux, macOS | 3 | |
| T1574.007 | Path Interception by PATH Environment Variable Sub | Execution, Persistence, P... | Linux, macOS, Window | 0 | |
| T1574.008 | Path Interception by Search Order Hijacking Sub | Execution, Persistence, P... | Windows | 0 | |
| T1574.009 | Path Interception by Unquoted Path Sub | Execution, Persistence, P... | Windows | 0 | |
| T1574.010 | Services File Permissions Weakness Sub | Execution, Persistence, P... | Windows | 0 | |
| T1574.011 | Services Registry Permissions Weakness Sub | Execution, Persistence, P... | Windows | 0 | |
| T1574.012 | COR_PROFILER Sub | Execution, Persistence, P... | Windows | 1 | |
| T1574.013 | KernelCallbackTable Sub | Execution, Persistence, P... | Windows | 1 | |
| T1574.014 | AppDomainManager Sub | Execution, Persistence, P... | Windows | 0 | |
| T1578 | Modify Cloud Compute Infrastructure | Stealth, Defense Impairme... | IaaS | 0 | |
| T1578.001 | Create Snapshot Sub | Stealth, Defense Impairme... | IaaS | 0 | |
| T1578.002 | Create Cloud Instance Sub | Stealth, Defense Impairme... | IaaS | 2 | |
| T1578.003 | Delete Cloud Instance Sub | Stealth, Defense Impairme... | IaaS | 2 | |
| T1578.004 | Revert Cloud Instance Sub | Stealth, Defense Impairme... | IaaS | 0 | |
| T1578.005 | Modify Cloud Compute Configurations Sub | Stealth, Defense Impairme... | IaaS | 0 | |
| T1580 | Cloud Infrastructure Discovery | Discovery | IaaS | 2 |