Technique List

Technique Name Technique ID's Categories Snippet(s) Rules(s) OS Creation Date
Process Injection: Portable Executable Injection T1055.002 Defense Evasion [Mitre] 1 year, 11 months
Process Injection: Dynamic-link Library Injection T1055.001 Defense Evasion [Mitre] 1 year, 11 months
Pre-OS Boot: Bootkit T1542.003 Defense Evasion [Mitre] 1 year, 11 months
Pre-OS Boot: Component Firmware T1542.002 Defense Evasion [Mitre] 1 year, 11 months
Pre-OS Boot: System Firmware T1542.001 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: Embedded Payloads T1027.009 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: Stripped Payloads T1027.008 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: Dynamic API Resolution T1027.007 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: HTML Smuggling T1027.006 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: Indicator Removal from Tools T1027.005 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: Compile After Delivery T1027.004 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: Steganography T1027.003 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: Software Packing T1027.002 Defense Evasion [Mitre] 1 year, 11 months
Obfuscated Files or Information: Binary Padding T1027.001 Defense Evasion [Mitre] 1 year, 11 months
Modify Registry T1112 Defense Evasion [Mitre] 1 year, 11 months
Modify Authentication Process: Hybrid Identity T1556.007 Defense Evasion [Mitre] 1 year, 11 months
Modify Authentication Process: Multi-Factor Authentication T1556.006 Defense Evasion [Mitre] 1 year, 11 months
Modify Authentication Process: Reversible Encryption T1556.005 Defense Evasion [Mitre] 1 year, 11 months
Modify Authentication Process: Password Filter DLL T1556.002 Defense Evasion [Mitre] 1 year, 11 months
Modify Authentication Process: Domain Controller Authentication T1556.001 Defense Evasion [Mitre] 1 year, 11 months
Modify Authentication Process T1556 Defense Evasion [Mitre] 1 year, 11 months
Masquerading: Double File Extension T1036.007 Defense Evasion [Mitre] 1 year, 11 months
Masquerading: Match Legitimate Name or Location T1036.005 Defense Evasion [Mitre] 1 year, 11 months
Masquerading: Masquerade Task or Service T1036.004 Defense Evasion [Mitre] 1 year, 11 months
Masquerading: Rename System Utilities T1036.003 Defense Evasion [Mitre] 1 year, 11 months
Masquerading: Right-to-Left Override T1036.002 Defense Evasion [Mitre] 1 year, 11 months
Masquerading: Invalid Code Signature T1036.001 Defense Evasion [Mitre] 1 year, 11 months
Indirect Command Execution T1202 Defense Evasion [Mitre] 1 year, 11 months
Indicator Removal: Clear Persistence T1070.009 Defense Evasion [Mitre] 1 year, 11 months
Indicator Removal: Clear Mailbox Data T1070.008 Defense Evasion [Mitre] 1 year, 11 months

Filter