Created
September 20, 2021 15:50
-
-
Save jsecurity101/fd45241a8a809ec02e335e02f4220fa7 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "name": "RPC to Technique Mapping", | |
| "versions": { | |
| "attack": "9", | |
| "navigator": "4.4.1", | |
| "layer": "4.2" | |
| }, | |
| "domain": "enterprise-attack", | |
| "description": "", | |
| "filters": { | |
| "platforms": [ | |
| "Windows" | |
| ] | |
| }, | |
| "sorting": 0, | |
| "layout": { | |
| "layout": "side", | |
| "aggregateFunction": "average", | |
| "showID": false, | |
| "showName": true, | |
| "showAggregateScores": false, | |
| "countUnscored": false | |
| }, | |
| "hideDisabled": false, | |
| "techniques": [ | |
| { | |
| "techniqueID": "T1087", | |
| "tactic": "discovery", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1087.001", | |
| "tactic": "discovery", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1087.002", | |
| "tactic": "discovery", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1547", | |
| "tactic": "persistence", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1547", | |
| "tactic": "privilege-escalation", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1547.012", | |
| "tactic": "persistence", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1547.012", | |
| "tactic": "privilege-escalation", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1543", | |
| "tactic": "persistence", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1543", | |
| "tactic": "privilege-escalation", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1543.003", | |
| "tactic": "persistence", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1543.003", | |
| "tactic": "privilege-escalation", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1210", | |
| "tactic": "lateral-movement", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1187", | |
| "tactic": "credential-access", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1557", | |
| "tactic": "credential-access", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1557", | |
| "tactic": "collection", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1557.001", | |
| "tactic": "credential-access", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1557.001", | |
| "tactic": "collection", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1112", | |
| "tactic": "defense-evasion", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1003", | |
| "tactic": "credential-access", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1003.006", | |
| "tactic": "credential-access", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1069", | |
| "tactic": "discovery", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1069.002", | |
| "tactic": "discovery", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1069.001", | |
| "tactic": "discovery", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1012", | |
| "tactic": "discovery", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1018", | |
| "tactic": "discovery", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1207", | |
| "tactic": "defense-evasion", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1053", | |
| "tactic": "execution", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1053", | |
| "tactic": "persistence", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1053", | |
| "tactic": "privilege-escalation", | |
| "color": "#636363", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": true | |
| }, | |
| { | |
| "techniqueID": "T1053.002", | |
| "tactic": "execution", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1053.002", | |
| "tactic": "persistence", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1053.002", | |
| "tactic": "privilege-escalation", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1053.005", | |
| "tactic": "execution", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1053.005", | |
| "tactic": "persistence", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| }, | |
| { | |
| "techniqueID": "T1053.005", | |
| "tactic": "privilege-escalation", | |
| "color": "#bdbdbd", | |
| "comment": "", | |
| "enabled": true, | |
| "metadata": [], | |
| "showSubtechniques": false | |
| } | |
| ], | |
| "gradient": { | |
| "colors": [ | |
| "#ff6666", | |
| "#ffe766", | |
| "#8ec843" | |
| ], | |
| "minValue": 0, | |
| "maxValue": 100 | |
| }, | |
| "legendItems": [], | |
| "metadata": [], | |
| "showTacticRowBackground": false, | |
| "tacticRowBackground": "#dddddd", | |
| "selectTechniquesAcrossTactics": true, | |
| "selectSubtechniquesWithParent": false | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment