Detecttechnique

D3-UBAUser Behavior Analysis

User Behavior Analysis

Definition

Defends against95

TypeTargetConfidenceTier
TechniqueEncrypted Channelt1573100%live
SubTechniqueSpearphishing Linkt1566.002100%live
SubTechniqueExfiltration Over Asymmetric Encrypted Non-C2 Protocolt1048.002100%live
TechniqueForge Web Credentialst1606100%live
TechniqueDrive-by Compromiset1189100%live
SubTechniqueDomain Frontingt1090.004100%live
SubTechniqueWindows Management Instrumentation Event Subscriptiont1546.003100%live
TechniqueScheduled Transfert1029100%live
SubTechniqueMake and Impersonate Tokent1134.003100%live
SubTechniqueLLMNR/NBT-NS Poisoning and SMB Relayt1557.001100%live
SubTechniqueAdditional Cloud Credentialst1098.001100%live
SubTechniqueDomain Accountt1087.002100%live
SubTechniquePassword Crackingt1110.002100%live
TechniqueExfiltration Over C2 Channelt1041100%live
TechniqueExfiltration Over Web Servicet1567100%live
SubTechniqueApplication Access Tokent1550.001100%live
TechniqueRogue Domain Controllert1207100%live
SubTechniqueCredential Stuffingt1110.004100%live
TechniqueSteal or Forge Kerberos Ticketst1558100%live
TechniqueUnsecured Credentialst1552100%live
SubTechniqueLocal Accountt1087.001100%live
SubTechniqueDirect Network Floodt1498.001100%live
TechniqueAutomated Exfiltrationt1020100%live
SubTechniqueExfiltration Over Unencrypted Non-C2 Protocolt1048.003100%live
SubTechniqueExternal Proxyt1090.002100%live
SubTechniqueMulti-hop Proxyt1090.003100%live
TechniqueTraffic Signalingt1205100%live
TechniqueAdversary-in-the-Middlet1557100%live
TechniqueBrowser Session Hijackingt1185100%live
TechniqueNon-Application Layer Protocolt1095100%live

Showing top 30 of 95 by confidence. Click any target to see the full neighbourhood.

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Defence
Message Analysis
Defence
Process Analysis
Defence
Platform Monitoring
Defence
Network Traffic Analysis
Defence
Access Policy Administration
Defence
Agent Authentication
Sourced from MITRE D3FEND ontology. Curated by Adam Lundqvist, SQUR.