Counter C00131: Seize and analyse botnet servers
March 13, 2024 ยท View on GitHub
-
Summary: Take botnet servers offline by seizing them.
-
Playbooks:
-
Metatechnique: M005 - Removal
-
Resources needed:
-
Belongs to tactic stage: TA11
| Actor types | Sectors |
|---|---|
| A029 server admininistrator | S008 |
| Counters these Tactics |
|---|
| Counters these Techniques |
|---|
| T0049 Flood Information Space |
| Seen in incidents |
|---|
DO NOT EDIT ABOVE THIS LINE - PLEASE ADD NOTES BELOW