Skip to content

Latest commit

 

History

History
19 lines (17 loc) · 2.74 KB

ds_proofpoint_proofpoint_enterprise_protection.md

File metadata and controls

19 lines (17 loc) · 2.74 KB

Vendor: Proofpoint

Product: Proofpoint Enterprise Protection

Rules Models MITRE ATT&CK® TTPs Activity Types Parsers
33 19 4 1 1
Use-Case Activity Types (Legacy Event Type)/Parsers MITRE ATT&CK® TTP Content
Data Exfiltration alert-trigger:success (dlp-alert)
proofpoint-pep-cef-alert-trigger-success-emailquarantineout
 T1020 - Automated Exfiltration
T1071 - Application Layer Protocol
TA0010 - TA0010
  • 29 Rules
  • 17 Models
Data Leak alert-trigger:success (dlp-alert)
proofpoint-pep-cef-alert-trigger-success-emailquarantineout
 T1020 - Automated Exfiltration
T1071 - Application Layer Protocol
TA0010 - TA0010
  • 29 Rules
  • 17 Models
Malware alert-trigger:success (dlp-alert)
proofpoint-pep-cef-alert-trigger-success-emailquarantineout
 TA0002 - TA0002
  • 4 Rules
  • 2 Models

MITRE ATT&CK® Framework for Enterprise

Initial Access Execution Persistence Privilege Escalation Defense Evasion Credential Access Discovery Lateral Movement Collection Command and Control Exfiltration Impact
Application Layer Protocol

 Automated Exfiltration