Technique List
| Technique Name | Technique ID's | Categories | Snippet(s) | Rules(s) | OS | Creation Date |
|---|---|---|---|---|---|---|
| Traffic Signaling: Port Knocking | T1205.001 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Template Injection | T1221 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Script Proxy Execution: PubPrn | T1216.001 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: MMC | T1218.014 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Mavinject | T1218.013 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Verclsid | T1218.012 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Rundll32 | T1218.011 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Regsvr32 | T1218.010 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Regsvcs/Regasm | T1218.009 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Odbcconf | T1218.008 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Msiexec | T1218.007 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Mshta | T1218.005 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: InstallUtil | T1218.004 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: CMSTP | T1218.003 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Control Panel | T1218.002 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| System Binary Proxy Execution: Compiled HTML File | T1218.001 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Subvert Trust Controls: Code Signing Policy Modification | T1553.006 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Subvert Trust Controls: Mark-of-the-Web Bypass | T1553.005 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Subvert Trust Controls: Install Root Certificate | T1553.004 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Subvert Trust Controls: SIP and Trust Provider Hijacking | T1553.003 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Subvert Trust Controls: Code Signing | T1553.002 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Rootkit | T1014 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Rogue Domain Controller | T1207 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Reflective Code Loading | T1620 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Process Injection: ListPlanting | T1055.015 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Process Injection: Process Doppelgänging | T1055.013 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Process Injection: Process Hollowing | T1055.012 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Process Injection: Extra Window Memory Injection | T1055.011 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Process Injection: Thread Local Storage | T1055.005 | Defense Evasion [Mitre] | 2 years, 2 months | |||
| Process Injection: Asynchronous Procedure Call | T1055.004 | Defense Evasion [Mitre] | 2 years, 2 months |