Detectsubtechnique
D3-AEMApplication Exception Monitoring
Definition
Monitoring the failures of system counters and timers.
Defends against14
| Type | Target | Confidence | Tier |
|---|---|---|---|
| SubTechnique | Credential Stuffingt1110.004 | 100% | live |
| SubTechnique | Sudo and Sudo Cachingt1548.003 | 100% | live |
| SubTechnique | Trapt1546.005 | 100% | live |
| SubTechnique | Password Guessingt1110.001 | 100% | live |
| SubTechnique | Create Process with Tokent1134.002 | 100% | live |
| SubTechnique | Password Sprayingt1110.003 | 100% | live |
| SubTechnique | Cached Domain Credentialst1003.005 | 100% | live |
| SubTechnique | Make and Impersonate Tokent1134.003 | 100% | live |
| SubTechnique | Clear Command Historyt1070.003 | 100% | live |
| Technique | Forced Authenticationt1187 | 100% | live |
| SubTechnique | Windows Management Instrumentation Event Subscriptiont1546.003 | 100% | live |
| SubTechnique | DCSynct1003.006 | 100% | live |
| Technique | Deobfuscate/Decode Files or Informationt1140 | 100% | live |
| SubTechnique | Clear Windows Event Logst1070.001 | 100% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.