Detecttechnique

D3-OPMOperational Process Monitoring

Operational Process Monitoring

Definition

Monitoring physical parameters and operator actions related to an operational environment.

Defends against13

TypeTargetConfidenceTier
TechniqueForced Authenticationt1187100%live
SubTechniqueSudo and Sudo Cachingt1548.003100%live
SubTechniquePassword Guessingt1110.001100%live
SubTechniquePassword Sprayingt1110.003100%live
SubTechniqueClear Command Historyt1070.003100%live
SubTechniqueDCSynct1003.006100%live
SubTechniqueClear Windows Event Logst1070.001100%live
SubTechniqueMake and Impersonate Tokent1134.003100%live
SubTechniqueTrapt1546.005100%live
TechniqueDeobfuscate/Decode Files or Informationt1140100%live
SubTechniqueCreate Process with Tokent1134.002100%live
SubTechniqueCredential Stuffingt1110.004100%live
SubTechniqueWindows Management Instrumentation Event Subscriptiont1546.003100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Defence
Platform Monitoring
Defence
Operating Mode Monitoring
Defence
Operational Activity Mapping
Defence
Operational Risk Assessment
Defence
Application Performance Monitoring
Defence
Motion Sensor Monitoring
Sourced from MITRE D3FEND ontology. Curated by Adam Lundqvist, SQUR.