MITRE ATT&CK and D3FEND for Cloud and Containers – Sysdig
Tags
cmtmf-attack-pattern: Active Scanning
attack-pattern: Data Active Scanning - T1595 Container Service - T1543.005 Deploy Container - T1610 Disable Or Modify Tools - T1562.001 Disable Or Modify Tools - T1629.003 Malicious Image - T1204.003 Network Topology - T1590.004 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Vulnerabilities - T1588.006 Indicator Removal On Host - T1070 User Execution - T1204
Show in Graph
Common Information
Type Value
UUID af8ed8fb-020a-4a23-a0b5-d719e83b62a3
Fingerprint af209b1287950e17
Analysis status DONE
Considered CTI value 0
Text language
Published March 1, 2023, midnight
Added to db March 1, 2023, 5:57 p.m.
Last updated Nov. 17, 2024, 6:55 p.m.
Headline MITRE ATT&CK and D3FEND for Cloud and Containers
Title MITRE ATT&CK and D3FEND for Cloud and Containers – Sysdig
Detected Hints/Tags/Attributes 59/2/16
Source URLs
Redirection Url
Details Source https://sysdig.com/blog/mitre-attck-and-d3fend-for-cloud-and-containers/
URL Provider
Details Provider Source level domain
Details sysdig.com sysdig.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 242 Sysdig https://sysdig.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 11 
proc.exe
Details File 5 
%proc.exe
Details File 1 
1schemas.xml
Details MITRE ATT&CK Techniques 247 
T1070
Details MITRE ATT&CK Techniques 298 
T1562.001
Details Domain 75 
user.name
Details Domain 10 
container.info
Details Domain 15 
proc.pid
Details Domain 4 
group.name
Details Domain 21 
container.id
Details Domain 24 
container.name
Details Domain 5 
microsoft.storage
Details Domain 1 
1schemas.xmlsoap.org
Details File 9 
user.log
Details File 12 
%user.log
Details File 10 
%container.inf