Detectsubtechnique

D3-SBVService Binary Verification

Definition

Analyzing changes in service binary files by comparing to a source of truth.

Defends against16

TypeTargetConfidenceTier
SubTechniquePluggable Authentication Modulest1556.003100%live
SubTechniqueWeb Portal Capturet1056.003100%live
SubTechniqueProc Filesystemt1003.007100%live
SubTechniqueSudo and Sudo Cachingt1548.003100%live
SubTechniqueServices File Permissions Weaknesst1574.010100%live
SubTechniqueDynamic Linker Hijackingt1574.006100%live
SubTechniqueSystemd Servicet1543.002100%live
SubTechniqueRun Virtual Instancet1564.006100%live
SubTechniqueProc Memoryt1055.009100%live
TechniqueSteal or Forge Authentication Certificatest1649100%live
TechniqueRemote System Discoveryt1018100%live
SubTechniqueClear Linux or Mac System Logst1070.002100%live
TechniqueSoftware Deployment Toolst1072100%live
SubTechniqueRename System Utilitiest1036.003100%live
SubTechniqueExecutable Installer File Permissions Weaknesst1574.005100%live
TechniqueExploitation for Credential Accesst1212100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Defence
System Firmware Verification
Defence
Firmware Verification
Defence
Process Code Segment Verification
Defence
Firmware Behavior Analysis
Defence
System File Analysis
Defence
System Daemon Monitoring
Sourced from MITRE D3FEND ontology. Curated by Adam Lundqvist, SQUR.