Please enable JavaScript.
Coggle requires JavaScript to display documents.
IAA - 08 Cyber Kill Chain and MITTRE ATT&CK, Cyber Kill Chain -…
IAA - 08
Cyber Kill Chain and MITTRE ATT&CK
Tactic
Sub-goal
Techniques
How to do
Procedures
Real Implementation details.
Adversarial, Tactics, Techniques & Common Knowledge.
Cyber Kill Chain
Installation
Setup base on the compromised system.
Installations
Backdoor Creation
Secure a lasting foothold
Command & Control
Covert pathways to remotely communicate with the compromised system.
RDP
DGA (Domain Generation Algorithms)
Reconnaissance
Gather Information
Types
Active
Engage with the system/s
Passive
Public Info
Weaponization
Construct malicious tools for the malicious intention
Delivery
Ex:
Drive by downloads
Infected USB Drives
Phishing Mails
Watering Whole Attacks
Exploitation
Primary Goal
Unauthorized Access
Use vulnerabilities /
Actions on Objectives
Primary objective
Data theft
System Manipulation
Corrupt / Destroy data.
Causing Disruptions
DDoS
Ransomware Deployment