Isolatetechnique

D3-CFContent Filtering

Content Filtering

Definition

Defends against113

TypeTargetConfidenceTier
SubTechniqueSpearphishing Linkt1566.002100%live
SubTechniqueMatch Legitimate Name or Locationt1036.005100%live
TechniqueSoftware Deployment Toolst1072100%live
SubTechniqueWeb Protocolst1071.001100%live
SubTechniqueLogin Hookt1037.002100%live
TechniqueArchive Collected Datat1560100%live
SubTechniqueLocal Email Collectiont1114.001100%live
SubTechniqueMSBuildt1127.001100%live
SubTechniqueThread Execution Hijackingt1055.003100%live
SubTechniqueTrapt1546.005100%live
SubTechniqueBash Historyt1552.003100%live
SubTechniqueShortcut Modificationt1547.009100%live
SubTechniqueRegistry Run Keys / Startup Foldert1547.001100%live
SubTechniqueSpace after Filenamet1036.006100%live
SubTechniqueRun Virtual Instancet1564.006100%live
SubTechniqueScreensavert1546.002100%live
SubTechniqueMshtat1218.005100%live
SubTechniqueRe-opened Applicationst1547.007100%live
SubTechniqueRuntime Data Manipulationt1565.003100%live
SubTechniqueSpearphishing Attachmentt1566.001100%live
SubTechniqueDLL Side-Loadingt1574.002100%live
SubTechniqueArchive via Utilityt1560.001100%live
SubTechniqueSafe Mode Boott1562.009100%live
SubTechniqueAuthentication Packaget1547.002100%live
SubTechniqueImpair Command History Loggingt1562.003100%live
TechniqueDeobfuscate/Decode Files or Informationt1140100%live
SubTechniqueCOR_PROFILERt1574.012100%live
SubTechniquePortable Executable Injectiont1055.002100%live
TechniqueXSL Script Processingt1220100%live
SubTechniqueRename System Utilitiest1036.003100%live

Showing top 30 of 113 by confidence. Click any target to see the full neighbourhood.

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Defence
File Analysis
Defence
Identifier Analysis
Defence
Network Mapping
Defence
System Mapping
Defence
Process Analysis
Defence
Application Hardening
Sourced from MITRE D3FEND ontology. Curated by Adam Lundqvist, SQUR.