Vendor: F5
April 15, 2026 · View on GitHub
Product: F5 Silverline
| Rules | Models | MITRE ATT&CK® TTPs | Activity Types | Parsers |
|---|---|---|---|---|
| 43 | 18 | 8 | 2 | 2 |
| Use-Case | Activity Types/Parsers | MITRE ATT&CK® TTP | Content |
|---|---|---|---|
| Compromised Credentials | network-alert ↳f5-silverline-json-alert-trigger-success-waf ↳f5-silverline-kv-alert-trigger-ipi ↳f5-silverline-json-alert-trigger-success-waf | T1027 - Obfuscated Files or Information T1027.005 - Obfuscated Files or Information: Indicator Removal from Tools T1190 - Exploit Public Fasing Application |
|
| Lateral Movement | network-connection-failed ↳f5-silverline-kv-network-session-fail-irule | T1090 - Proxy T1090.003 - Proxy: Multi-hop Proxy T1190 - Exploit Public Fasing Application TA0010 - TA0010 TA0011 - TA0011 |
|
| Malware | network-alert ↳f5-silverline-json-alert-trigger-success-waf ↳f5-silverline-kv-alert-trigger-ipi ↳f5-silverline-json-alert-trigger-success-waf network-connection-failed ↳f5-silverline-kv-network-session-fail-irule | TA0002 - TA0002 TA0011 - TA0011 |
|
MITRE ATT&CK® Framework for Enterprise
| Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
|---|---|---|---|---|---|---|---|---|---|---|---|
| Exploit Public Fasing Application | Obfuscated Files or Information: Indicator Removal from Tools Obfuscated Files or Information | Proxy: Multi-hop Proxy Proxy |