Vendor: McAfee
July 25, 2023 · View on GitHub
Product: McAfee NSM
| Rules | Models | MITRE TTPs | Event Types | Parsers |
|---|---|---|---|---|
| 9 | 6 | 2 | 1 | 1 |
| Use-Case | Event Types/Parsers | MITRE TTP | Content |
|---|---|---|---|
| Compromised Credentials | network-alert ↳ syslog-mcafee-network-alert | T1027.005 - Obfuscated Files or Information: Indicator Removal from Tools |
|
| Malware | network-alert ↳ syslog-mcafee-network-alert | T1204 - User Execution |
|
ATT&CK Matrix for Enterprise
| Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
|---|---|---|---|---|---|---|---|---|---|---|---|
| User Execution | Obfuscated Files or Information: Indicator Removal from Tools Obfuscated Files or Information |