Vendor: IronNet

October 24, 2023 · View on GitHub

Product: IronDefense

Rules	Models	MITRE ATT&CK® TTPs	Activity Types	Parsers
25	11	3	1	1

Use-Case	Activity Types/Parsers	MITRE ATT&CK® TTP	Content
Compromised Credentials	network-alert ↳ironnet-id-json-alert-trigger-success-irondefense	T1027.005 - Obfuscated Files or Information: Indicator Removal from Tools T1190 - Exploit Public Fasing Application	21 Rules 9 Models
Malware	network-alert ↳ironnet-id-json-alert-trigger-success-irondefense	TA0002 - TA0002	4 Rules 2 Models

MITRE ATT&CK® Framework for Enterprise

Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Exploit Public Fasing Application				Obfuscated Files or Information: Indicator Removal from Tools Obfuscated Files or Information