TA0001ATT&CK 14.1

TA0001Initial Access

Description

The adversary is trying to get into your network. Initial Access consists of techniques that use various entry vectors to gain their initial foothold within a network. Techniques used to gain a foothold include targeted spearphishing and exploiting weaknesses on public-facing web servers. Footholds gained through initial access may allow for continued access, like valid accounts and use of external remote services, or may be limited-use due to changing passwords.

Techniques in this tactic· 9

T1078
Valid Accounts
T1091
Replication Through Removable Media
T1133
External Remote Services
T1189
Drive-by Compromise
T1190
Exploit Public-Facing Application
T1195
Supply Chain Compromise
T1199
Trusted Relationship
T1200
Hardware Additions
T1566
Phishing

Sub-techniques in this tactic· 11

T1078.001T1078.002T1078.003T1078.004T1195.001T1195.002T1195.003T1566.001T1566.002T1566.003T1566.004

References

  1. https://attack.mitre.org/tactics/TA0001

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Tactic
Credential Access
Tactic
Privilege Escalation
Tactic
Lateral Movement
Tactic
Reconnaissance
Tactic
Discovery
Tactic
Execution
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, Founder at SQUR.