271 indexed
D3FENDD3FEND defensive techniques
271 MITRE D3FEND defences across 7 tactics (Model, Harden, Detect, Isolate, Deceive, Evict, Restore). Filter to a tactic or browse the full set. Authored by Adam Lundqvist.
19 in Evict · 271 total
| ID | Title | Summary |
|---|---|---|
| D3-AL | Account Locking | The process of temporarily disabling user accounts on a system or domain. |
| D3-ANCI | Authentication Cache Invalidation | Removing tokens or credentials from an authentication cache to prevent further user associated account accesses. |
| D3-CE | Credential Eviction | |
| D3-CR | Credential Revocation | Deleting a set of credentials permanently to prevent them from being used to authenticate. |
| D3-DKE | Disk Erasure | Disk Erasure is the process of securely deleting all data on a disk to ensure that it cannot be recovered by any means. |
| D3-DKF | Disk Formatting | Disk Formatting is the process of preparing a data storage device, such as a hard drive, solid-state drive, or USB flash drive, for initial use. |
| D3-DKP | Disk Partitioning | Disk Partitioning is the process of dividing a disk into multiple distinct sections, known as partitions. |
| D3-DNSCE | DNS Cache Eviction | Flushing DNS to clear any IP addresses or other DNS records from the cache. |
| D3-DRT | Domain Registration Takedown | The process of performing a takedown of the attacker's domain registration infrastructure. |
| D3-ER | Email Removal | The email removal technique deletes email files from system storage. |
| D3-FEV | File Eviction | File eviction techniques delete files from system storage. |
| D3-HR | Host Reboot | Initiating a host's reboot sequence to terminate all running processes. |
| D3-HS | Host Shutdown | Initiating a host's shutdown sequence to terminate all running processes. |
| D3-OE | Object Eviction | |
| D3-PE | Process Eviction | |
| D3-PS | Process Suspension | Suspending a running process on a computer system. |
| D3-PT | Process Termination | Terminating a running application process on a computer system. |
| D3-RKD | Registry Key Deletion | Delete a registry key. |
| D3-ST | Session Termination | Forcefully end all active sessions associated with compromised accounts or devices. |