filmov
tv
MITRE 'Discovery' phase explained under 1 minute
Показать описание
In the Discovery phase, The threat actor is trying to figure out your environment. Discovery consists of techniques an adversary may use to gain knowledge about the system and internal network.
These techniques help adversaries observe the environment and orient themselves before deciding how to act. They also allow adversaries to explore what they can control and what's around their entry point in order to discover how it could benefit their current objective. Native operating system tools are often used toward this post-compromise information-gathering objective. The MITRE Attack framework short code for "Discovery" is TA0007.
Learn more about MITRE:
Check out my MITRE playlist, here I explain MITRE in very basic language (almost non-technical):
Check out the official MITRE website (We are not affiliated to them in any way):
These techniques help adversaries observe the environment and orient themselves before deciding how to act. They also allow adversaries to explore what they can control and what's around their entry point in order to discover how it could benefit their current objective. Native operating system tools are often used toward this post-compromise information-gathering objective. The MITRE Attack framework short code for "Discovery" is TA0007.
Learn more about MITRE:
Check out my MITRE playlist, here I explain MITRE in very basic language (almost non-technical):
Check out the official MITRE website (We are not affiliated to them in any way):
0:00:59
0:00:54
0:00:51
0:01:19
0:06:19
0:00:56
0:00:58
0:08:59
0:00:53
0:00:52
0:30:21
0:34:40
0:18:43
0:11:28
0:08:59
0:07:07
0:47:00
0:09:12
0:16:43
0:59:18
0:38:55
0:30:39
0:42:16
0:13:39