Skip to content

Latest commit

 

History

History
19 lines (17 loc) · 2.63 KB

ds_cisco_cisco_cloudlock.md

File metadata and controls

19 lines (17 loc) · 2.63 KB
Raw

Vendor: Cisco

Product: Cisco CloudLock

Rules Models MITRE ATT&CK® TTPs Activity Types Parsers
33 19 4 1 0
Use-Case Activity Types (Legacy Event Type)/Parsers MITRE ATT&CK® TTP Content
Data Exfiltration alert-trigger:success (dlp-alert)
cisco-cloudlock-json-alert-trigger-success-entityowneremail
 T1020 - Automated Exfiltration
T1071 - Application Layer Protocol
TA0010 - TA0010
  • 29 Rules
  • 17 Models
Data Leak alert-trigger:success (dlp-alert)
cisco-cloudlock-json-alert-trigger-success-entityowneremail
 T1020 - Automated Exfiltration
T1071 - Application Layer Protocol
TA0010 - TA0010
  • 29 Rules
  • 17 Models
Malware alert-trigger:success (dlp-alert)
cisco-cloudlock-json-alert-trigger-success-entityowneremail
 TA0002 - TA0002
  • 4 Rules
  • 2 Models

MITRE ATT&CK® Framework for Enterprise

Initial Access Execution Persistence Privilege Escalation Defense Evasion Credential Access Discovery Lateral Movement Collection Command and Control Exfiltration Impact
Application Layer Protocol

 Automated Exfiltration