Vendor: Kaspersky

Product: Kaspersky AV

Rules	Models	MITRE TTPs	Event Types	Parsers
1	0	1	1	1

Use-Case	Event Types/Parsers	MITRE TTP	Content
Privilege Abuse	dlp-email-alert-in ↳ cef-kaspersky-dlp-email	T1078 - Valid Accounts	1 Rules
Privileged Activity	dlp-email-alert-in ↳ cef-kaspersky-dlp-email	T1078 - Valid Accounts	1 Rules

ATT&CK Matrix for Enterprise

Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Valid Accounts		Valid Accounts	Valid Accounts	Valid Accounts