Skip to content

Files

Latest commit

e6f9392 · Oct 14, 2024

History

History
19 lines (17 loc) · 3.84 KB

ds_xplan_xplan.md

File metadata and controls

19 lines (17 loc) · 3.84 KB

Vendor: xPLAN

Product: xPLAN

Rules Models MITRE ATT&CK® TTPs Activity Types Parsers
12 6 1 1 4
Use-Case Activity Types (Legacy Event Type)/Parsers MITRE ATT&CK® TTP Content
Abnormal Authentication & Access physical_location-access:fail (failed-physical-access)
xplan-x-csv-physical-location-access-fail-cardexpired
xplan-x-csv-physical-location-access-fail-accessdenied
xplan-x-csv-physical-location-access-fail-passbackattemped
xplan-x-csv-physical-location-access-fail-cardresend

physical_location-access:success (physical-access)
xplan-x-csv-physical-location-access-success-accessgranted
xplan-x-csv-physical-location-access-success-controlrelinquished
T1078 - Valid Accounts
  • 3 Rules
  • 2 Models
Physical Security physical_location-access:fail (failed-physical-access)
xplan-x-csv-physical-location-access-fail-cardexpired
xplan-x-csv-physical-location-access-fail-accessdenied
xplan-x-csv-physical-location-access-fail-passbackattemped
xplan-x-csv-physical-location-access-fail-cardresend

physical_location-access:success (physical-access)
xplan-x-csv-physical-location-access-success-accessgranted
xplan-x-csv-physical-location-access-success-controlrelinquished
T1078 - Valid Accounts
  • 9 Rules
  • 4 Models
Next Page -->>

MITRE ATT&CK® Framework for Enterprise

Initial Access Execution Persistence Privilege Escalation Defense Evasion Credential Access Discovery Lateral Movement Collection Command and Control Exfiltration Impact
Valid Accounts

Valid Accounts

Valid Accounts

Valid Accounts