T1105 (Ingress Tool Transfer)
GPTKB entity
Statements (15)
Predicate | Object |
---|---|
gptkbp:instanceOf |
MITRE ATT&CK technique
|
gptkbp:describes |
Adversaries may transfer tools or other files from an external system into a compromised environment.
|
gptkbp:detects |
Monitor network traffic for unexpected file transfers.
|
gptkbp:example |
Adversaries using FTP, SCP, or HTTP to transfer tools.
|
gptkbp:externalLink |
https://attack.mitre.org/techniques/T1105/
|
https://www.w3.org/2000/01/rdf-schema#label |
T1105 (Ingress Tool Transfer)
|
gptkbp:mitigatedBy |
Restrict network traffic and monitor for suspicious activity.
|
gptkbp:partOf |
gptkb:MITRE_ATT&CK_framework
|
gptkbp:platform |
gptkb:Windows
gptkb:macOS gptkb:Linux |
gptkbp:tactics |
gptkb:Command_and_Control
|
gptkbp:technique |
T1105
|
gptkbp:bfsParent |
gptkb:SofacyADVSTORESHELL
|
gptkbp:bfsLayer |
7
|