T1105 (Ingress Tool Transfer)

GPTKB entity

Statements (15)
Predicate Object
gptkbp:instanceOf MITRE ATT&CK technique
gptkbp:describes Adversaries may transfer tools or other files from an external system into a compromised environment.
gptkbp:detects Monitor network traffic for unexpected file transfers.
gptkbp:example Adversaries using FTP, SCP, or HTTP to transfer tools.
gptkbp:externalLink https://attack.mitre.org/techniques/T1105/
https://www.w3.org/2000/01/rdf-schema#label T1105 (Ingress Tool Transfer)
gptkbp:mitigatedBy Restrict network traffic and monitor for suspicious activity.
gptkbp:partOf gptkb:MITRE_ATT&CK_framework
gptkbp:platform gptkb:Windows
gptkb:macOS
gptkb:Linux
gptkbp:tactics gptkb:Command_and_Control
gptkbp:technique T1105
gptkbp:bfsParent gptkb:SofacyADVSTORESHELL
gptkbp:bfsLayer 7