Detections
Analytics
Attack Path Techniques
As part of a typical attack, adversaries leverage different tools and techniques to accomplish their objectives. Usually, a hacker attains an initial foothold over the network, whether by a phishing attack or exploiting a publicly exposed vulnerability. Hackers may then seem to maintain access over the machine (Persistence), elevate their privileges, and laterally pivot between network devices (Lateral Movement). Last, the hacker tries to complete their objective, for example, a denial of service of critical infrastructure, exfiltration of sensitive information, or distraction of existing services. This event is known as Attack Path. An attack path contains one or more Attack Techniques, allowing the hacker to accomplish his objective.
RSS Feeds
Search
| ID | Name | Platform | Family | Framework |
|---|---|---|---|---|
| WAS.98116 | NoSQL Injection | Web Application | Injection | OWASP |
| WAS.98120 | Code Injection | Web Application | Injection | OWASP |
| T1134.002_Windows | Access Token Manipulation: Create Process with Token | Windows | Defense Evasion, Privilege Escalation | MITRE ATT&CK |
| WAS.113331 | LDAP Injection Authentication Bypass | Web Application | Injection | OWASP |