System Network Connections Discovery (Windows)


Adversaries may attempt to get a listing of network connections to or from the compromised system they are currently accessing or from remote systems by querying for information over the network.

Products, Sensors, and Dependencies

ProductDependenciesData sourceAccess requiredProtocolData CollectedNotes
Tenable.ioAdvanced Network ScanWindows machinesAuthenticated ScanOS CommandComputer ConnectivityPlugin ID: 64582

Attack Path Technique Details

Framework: MITRE ATT&CK

Family: Discovery

Platform: Windows

Products Required:

Tenable Release Date: 2022 Q4