T1105 (Ingress Tool Transfer)
GPTKB entity
Statements (15)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
MITRE ATT&CK technique
|
| gptkbp:describes |
Adversaries may transfer tools or other files from an external system into a compromised environment.
|
| gptkbp:detects |
Monitor network traffic for unexpected file transfers.
|
| gptkbp:example |
Adversaries using FTP, SCP, or HTTP to transfer tools.
|
| gptkbp:externalLink |
https://attack.mitre.org/techniques/T1105/
|
| https://www.w3.org/2000/01/rdf-schema#label |
T1105 (Ingress Tool Transfer)
|
| gptkbp:mitigatedBy |
Restrict network traffic and monitor for suspicious activity.
|
| gptkbp:partOf |
gptkb:MITRE_ATT&CK_framework
|
| gptkbp:platform |
gptkb:Windows
gptkb:macOS gptkb:Linux |
| gptkbp:tactics |
gptkb:Command_and_Control
|
| gptkbp:technique |
T1105
|
| gptkbp:bfsParent |
gptkb:SofacyADVSTORESHELL
|
| gptkbp:bfsLayer |
7
|