T1071 (Application Layer Protocol)
GPTKB entity
Statements (13)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:MITRE_ATT&CK_technique
|
| gptkbp:describes |
Adversaries may communicate using application layer protocols to avoid detection/network filtering by blending in with existing traffic.
|
| gptkbp:hasSubtechnique |
T1071.001 (Web Protocols)
T1071.002 (File Transfer Protocols) T1071.003 (Mail Protocols) T1071.004 (DNS) |
| gptkbp:partOf |
gptkb:MITRE_ATT&CK_framework
|
| gptkbp:technique |
T1071
|
| gptkbp:usedFor |
gptkb:Command_and_Control
|
| gptkbp:bfsParent |
gptkb:SofacyADVSTORESHELL
gptkb:SofacyCHOPSTICK |
| gptkbp:bfsLayer |
7
|
| https://www.w3.org/2000/01/rdf-schema#label |
T1071 (Application Layer Protocol)
|