Name | Tags | Incidents | MITRE Tactic | Tech | Status |
---|---|---|---|---|---|
Cloud | Credential Access (TA0006) | Stub | |||
Cloud | Discovery (TA0007) | Stub | |||
CI/CD | Stub | ||||
Cloud | Lateral Movement (TA0008) | Stub | |||
K8s | Initial Access (TA0001) | Stub | |||
AAD | Lateral Movement (TA0008) | Stub | |||
Cloud | Initial Access (TA0001) | Stub | |||
Stub | |||||
AAD | Lateral Movement (TA0008) | Stub | |||
AAD | Lateral Movement (TA0008)Credential Access (TA0006) | Finalized | |||
Stub | |||||
Cloud | Persistence (TA0003)Execution (TA0002) | Stub | |||
Cloud | Stub | ||||
CloudAAD | Persistence (TA0003) | Stub | |||
CloudAAD | Lateral Movement (TA0008) | Stub | |||
Execution (TA0002) | Stub | ||||
Cloud | Initial Access (TA0001) | Stub | |||
K8s | Initial Access (TA0001) | Stub | |||
Cloud | Initial Access (TA0001) | Stub | |||
Cloud | Initial Access (TA0001) | Stub | |||
Windows | Execution (TA0002)Privilege Escalation (TA0004) | Stub | |||
CloudRansomware | Impact (TA0040) | Stub | |||
Cloud | Initial Access (TA0001) | Stub | |||
App Misconfig. | Reconnaissance (TA0043)Credential Access (TA0006) | Stub | |||
CI/CD | Discovery (TA0007) | Stub | |||
Cloud | Reconnaissance (TA0043) | Stub | |||
CloudK8s | Impact (TA0040) | Featured | |||
Stub | |||||
Cloud | Impact (TA0040) | Finalized | |||
Cloud | Persistence (TA0003) | Stub | |||
K8s | Initial Access (TA0001) | Stub | |||
K8s | Discovery (TA0007) | Stub | |||
Cloud | Initial Access (TA0001) | Stub | |||
Stub | |||||
Cloud | Persistence (TA0003) | Stub | |||
LinuxWindows | Persistence (TA0003) | Stub | |||
Persistence (TA0003)Credential Access (TA0006) | Stub | ||||
Defense Evasion (TA0005) | Stub | ||||
Persistence (TA0003) | Stub | ||||
CI/CD | Credential Access (TA0006) | Stub | |||
CloudLinux | Initial Access (TA0001) | Stub | |||
Credential Access (TA0006) | Stub | ||||
Persistence (TA0003) | Stub | ||||
Network | Resource Development (TA0042) | Stub | |||
Stub | |||||
Ransomware | Impact (TA0040) | Stub | |||
Cloud | Defense Evasion (TA0005) | Stub | |||
Network | Discovery (TA0007) | Stub | |||
Impact (TA0040) | Stub | ||||
Execution (TA0002) | Stub | ||||
Command and Control (TA0011) | Stub | ||||
Stub | |||||
Stub | |||||
Supply Chain | Impact (TA0040) | Stub | |||
Initial Access (TA0001) | Stub | ||||
Cloud | Defense Evasion (TA0005) | Stub | |||
Linux | Privilege Escalation (TA0004) | Stub | |||
Stub | |||||
Execution (TA0002) | Stub | ||||
Cloud | Exfiltration (TA0010) | Stub | |||
Cloud | Exfiltration (TA0010) | Stub | |||
K8s | Privilege Escalation (TA0004) | Stub | |||
K8s | Privilege Escalation (TA0004) | Stub | |||
Cloud | Exfiltration (TA0010) | Stub | |||
Initial Access (TA0001) | Stub | ||||
Cloud | Credential Access (TA0006)Lateral Movement (TA0008) | Stub | |||
Initial Access (TA0001) | Stub | ||||
Network | Command and Control (TA0011) | Stub | |||
Supply ChainK8s | Initial Access (TA0001) | Stub | |||
Cloud | ScarletEel campaign (Feb ‘23) ScarletEel campaign (July ‘23) SilentBob cryptomining campaign From PHP exploitation to AWS lateral movement Misconfigured firewall to cryptojacking botnet Capital One incident (March 2019) UNC2903 campaigns SQL Server to cloud lateral movement From PHP vuln to Sliver execution via cron From web app exploitation to Chisel tunneling Commando Cat campaign Hugging Face cross-tenant access US DoD NIPRNet access via Atlassian SSRF | Credential Access (TA0006) | Featured | ||
Privilege Escalation (TA0004) | Stub | ||||
Execution (TA0002)Persistence (TA0003) | Stub | ||||
Stub | |||||
App Misconfig. | Initial Access (TA0001)Privilege Escalation (TA0004) | Stub | |||
Ransomware | Impact (TA0040) | Stub | |||
K8sAuthentication | Initial Access (TA0001) | Stub | |||
Cloud | Persistence (TA0003) | Stub | |||
Stub | |||||
Linux | Persistence (TA0003) | Stub | |||
AI/ML | Initial Access (TA0001) | Stub | |||
Not started | |||||
Windows | Defense Evasion (TA0005) | Stub | |||
Credential Access (TA0006)Privilege Escalation (TA0004) | Stub | ||||
AI/ML | ML Attack Staging (AML.TA0001) | Stub | |||
Supply ChainCloud | Initial Access (TA0001) | Stub | |||
Initial Access (TA0001) | Stub | ||||
Authentication | Persistence (TA0003) | Stub | |||
AuthenticationSocial Eng. | Initial Access (TA0001) | Stub | |||
App Misconfig. | Stub | ||||
App Misconfig. | Initial Access (TA0001) | Stub | |||
App Misconfig. | Initial Access (TA0001) | Stub | |||
App Misconfig. | Initial Access (TA0001) | Stub | |||
App Misconfig. | Initial Access (TA0001) | Stub | |||
App Misconfig.K8s | Initial Access (TA0001) | Stub | |||
CloudCI/CD | Initial Access (TA0001)Credential Access (TA0006) | Featured | |||
App Misconfig. | Initial Access (TA0001) | Stub | |||
LinuxOS Misconfig.NetworkAuthentication | Initial Access (TA0001)Lateral Movement (TA0008) | Featured | |||
App Misconfig. | Initial Access (TA0001) | Stub | |||
Cloud | Persistence (TA0003) | Stub | |||
Cloud | Persistence (TA0003) | Stub | |||
Persistence (TA0003) | Stub | ||||
Persistence (TA0003) | Stub | ||||
Supply ChainCI/CD | Initial Access (TA0001) | Stub | |||
Initial Access (TA0001) | Stub | ||||
Initial Access (TA0001) | Stub | ||||
Initial Access (TA0001) | Stub | ||||
Initial Access (TA0001) | Stub | ||||
CredentialsAuthentication | Credential Access (TA0006)Initial Access (TA0001) | Stub | |||
CloudAI/ML | Persistence (TA0003) | Stub | |||
Cloud | Persistence (TA0003) | Stub | |||
Initial Access (TA0001) | Stub | ||||
AI/ML | Resource Development (TA0042)Persistence (TA0003) | Stub | |||
Stub | |||||
K8s | Lateral Movement (TA0008) | Stub | |||
Impact (TA0040) | Stub | ||||
Cloud | Initial Access (TA0001) | Stub | |||
Stub | |||||
CI/CD | Initial Access (TA0001) | Stub | |||
LinuxCloud | Persistence (TA0003) | Stub | |||
Authentication | Credential Access (TA0006) | Stub | |||
Execution (TA0002) | Stub | ||||
Supply Chain | Initial Access (TA0001) | Stub | |||
CI/CDApp Misconfig.Network | Initial Access (TA0001) | Stub | |||
Cloud | Execution (TA0002) | Stub | |||
Cloud | Credential Access (TA0006) | Stub | |||
Execution (TA0002) | Stub | ||||
Persistence (TA0003)Execution (TA0002)Privilege Escalation (TA0004)Defense Evasion (TA0005) | Stub | ||||
Stub | |||||
Cloud | Execution (TA0002) | Stub | |||
Stub | |||||
Not started | |||||
Cloud | Exfiltration (TA0010)Persistence (TA0003) | Stub | |||
Initial Access (TA0001) | Stub | ||||
Stub | |||||
Cloud | Stub | ||||
Social Eng. | Initial Access (TA0001) | Stub | |||
Initial Access (TA0001) | Stub | ||||
App Misconfig. | Initial Access (TA0001) | Stub | |||
App Misconfig. | Execution (TA0002) | Stub | |||
App Misconfig. | Initial Access (TA0001) | Stub | |||
Lateral Movement (TA0008) | Stub | ||||
Stub | |||||
Initial Access (TA0001) | Stub | ||||
Cloud | Credential Access (TA0006) | Stub | |||
CloudNetwork | Impact (TA0040) | Stub | |||
Linux | Privilege Escalation (TA0004) | Stub | |||
Defense Evasion (TA0005) | Stub | ||||
Initial Access (TA0001)Credential Access (TA0006) | Stub | ||||
Command and Control (TA0011)Defense Evasion (TA0005) | Stub | ||||
Network | Defense Evasion (TA0005) | Stub | |||
Cloud | Exfiltration (TA0010) | Stub | |||
Initial Access (TA0001)Credential Access (TA0006) | Stub | ||||
Privilege Escalation (TA0004) | Stub | ||||
Stub | |||||
Network | Apache server Cryptojacking with Cobalt Strike Prophet Spider campaign Andariel exploiting Apache ActiveMQ GoTitan ActiveMQ campaign LAPSUS$ campaigns P2PInfect campaign 8820 Gang targeting WebLogic Trigona targeting MSSQL servers RE#TURGENCE MSSQL Server RansomOp Mimic used by Trigona operators Lucifer Botnet targeting Hadoop C3Pool mining via Confluence vulnerability z0Miner targeting WebLogic servers Meson Network cryptojacking campaign ShadowSyndicate aiohttp exploitation UNC5174 ScreenConnect and F5 BIG-IP exploitation RUBYCARP: Botnet Exploiting Vulnerabilities for Crypto Kubernetes Clusters Targeted in OpenMetadata Exploits Kinsing campaign (2020) Redigo campaign TargetCompany Abusing MSSQL Servers for Ransomware | Initial Access (TA0001)Privilege Escalation (TA0004) | Stub | ||
Not started |