Active DirectoryにおけるLDAPの攻撃目線と防御目線
Common Information
| Type | Value |
|---|---|
| UUID | e50696a6-0afd-4358-bcc3-09125b5a053a |
| Fingerprint | 4e1bbdd9e056819a8157d188ad60c63c5f049e2bafb6ce92032d56c9b7a0284a |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Jan. 30, 2024, 5:51 p.m. |
| Added to db | April 5, 2024, 4:01 p.m. |
| Last updated | Aug. 31, 2024, 6:28 a.m. |
| Headline | Active DirectoryにおけるLDAPの攻撃目線と防御目線 |
| Title | Active DirectoryにおけるLDAPの攻撃目線と防御目線 |
| Detected Hints/Tags/Attributes | 17/1/10 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://jsac.jpcert.or.jp/archive/2024/pdf/JSAC2024_1_LT4_jp.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 152 | cve-2023-3519 |
|
| Details | Domain | 207 | learn.microsoft.com |
|
| Details | Domain | 74 | thedfirreport.com |
|
| Details | Domain | 469 | www.cisa.gov |
|
| Details | File | 1 | supply_chain_compromise_detecting_apt_activity_from_known_ttps.pdf |
|
| Details | Url | 1 | https://www.cisa.gov/sites/default/files/publications/supply_chain_compromise_detecting_apt_activity_from_known_ttps.pdf |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/windows/win32/adschema/a-samaccounttype |
|
| Details | Url | 1 | https://learn.microsoft.com/ja-jp/troubleshoot/windows-server/identity/useraccountcontrol-manipulate-account-properties |
|
| Details | Url | 1 | https://thedfirreport.com/2023/03/06/2022-year-in-review |
|
| Details | Url | 3 | https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-278a |