mandiant / capa-rules

Standard collection of rules for capa: the tool for enumerating the capabilities of programs

https://github.com/mandiant/capa/

triage ATT&CK v13

wballenthin opened this issue a year ago · comments

Willi Ballenthin (Google) commented a year ago

https://attack.mitre.org/resources/updates/updates-april-2023/index.html

New Techniques

#753
#754
not obviously relevant:
- Unsecured Credentials: Chat Messages (v1.0)
- Acquire Access (v1.0)
- Acquire Infrastructure: Malvertising (v1.0)
- Cloud Administration Command (v1.0)
- Command and Scripting Interpreter: Cloud API (v1.0)
- Impair Defenses: Spoof Security Alerting (v1.0)
- Masquerading: Masquerade File Type (v1.0)
- Obfuscated Files or Information: Command Obfuscation (v1.0)
- Obfuscated Files or Information: Fileless Storage (v1.0)
- Remote Services: Cloud Services (v1.0)
- Exfiltration Over Web Service: Exfiltration to Text Storage Sites (v1.0)

Moritz commented 10 months ago

All handled

Links

ProductDiscover

Data Powerby api.github.com. Remove your profile on the Giters? Go to settings.

Contact Site Admin: Giters.