Vendor: GTB
June 14, 2023 · View on GitHub
Product: GTBInspector
| Rules | Models | MITRE ATT&CK® TTPs | Event Types | Parsers |
|---|---|---|---|---|
| 33 | 20 | 4 | 1 | 1 |
| Use-Case | Event Types/Parsers | MITRE ATT&CK® TTP | Content |
|---|---|---|---|
| Data Exfiltration | dlp-alert ↳cef-gtb-dlp-alert | T1020 - Automated Exfiltration T1071 - Application Layer Protocol TA0010 - TA0010 |
|
| Data Leak | dlp-alert ↳cef-gtb-dlp-alert | T1020 - Automated Exfiltration T1071 - Application Layer Protocol TA0010 - TA0010 |
|
| Malware | dlp-alert ↳cef-gtb-dlp-alert | TA0002 - TA0002 |
|
MITRE ATT&CK® Framework for Enterprise
| Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
|---|---|---|---|---|---|---|---|---|---|---|---|
| Application Layer Protocol | Automated Exfiltration |