MITRE ATT&CK Coverage

Observed techniques mapped to the ATT&CK framework

107

Total Events

108

Technique Hits

9

Unique Techniques

T1592

Most Common (17 hits)

ATT&CK Matrix Heatmap

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Active ScanningT159512

Gather Victim Host InformationT159217

Exploit Public-Facing ApplicationT119015

External Remote ServicesT113310

Command and Scripting InterpreterT1059

Unix ShellT1059.00414

Indicator RemovalT107013

Unsecured CredentialsT155216

Credentials In FilesT1552.0011

Exfiltration Over C2 ChannelT104110

Heat scale:

1-5

6-20

20+

Observed Techniques

T1592Gather Victim Host Information

17 hitsLast: 7:32:49 AMView

T1552Unsecured Credentials

16 hitsLast: 7:17:49 AMView

T1190Exploit Public-Facing Application

15 hitsLast: 7:27:49 AMView

T1059.004Unix Shell

14 hitsLast: 7:22:49 AMView

T1070Indicator Removal

13 hitsLast: 7:07:49 AMView

T1595Active Scanning

12 hitsLast: 7:36:49 AMView

T1041Exfiltration Over C2 Channel

10 hitsLast: 6:39:45 AMView

T1133External Remote Services

10 hitsLast: 2:01:31 AMView

T1552.001Credentials In Files

1 hitsLast: 7:17:49 AMView