Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2021-12-09Trend MicroVeronica Chierzi
@online{chierzi:20211209:evolution:f5eb0ca, author = {Veronica Chierzi}, title = {{The Evolution of IoT Linux Malware Based on MITRE ATT&CK TTPs}}, date = {2021-12-09}, organization = {Trend Micro}, url = {https://www.trendmicro.com/en_us/research/21/l/the-evolution-of-iot-linux-malware-based-on-mitre-att&ck-ttps.html}, language = {English}, urldate = {2022-01-05} } The Evolution of IoT Linux Malware Based on MITRE ATT&CK TTPs
Dark Nexus QSnatch
2021-11-03MITREMITRE
@techreport{mitre:20211103:threatinformed:b1206af, author = {MITRE}, title = {{Threat-Informed Defense Adoption Handbook: September 2021 Edition, Volume 1}}, date = {2021-11-03}, institution = {MITRE}, url = {https://info.mitre-engenuity.org/hubfs/CTID/Threat_Informed_Defense_Adoption_Handbook_Sept2021.pdf}, language = {English}, urldate = {2021-11-08} } Threat-Informed Defense Adoption Handbook: September 2021 Edition, Volume 1
2021-06-29Medium MITRE-EngenuityNicholas Amon, Jon Baker
@online{amon:20210629:security:bf73b27, author = {Nicholas Amon and Jon Baker}, title = {{Security Control Mappings: A Starting Point for Threat-Informed Defense}}, date = {2021-06-29}, organization = {Medium MITRE-Engenuity}, url = {https://medium.com/mitre-engenuity/security-control-mappings-a-starting-point-for-threat-informed-defense-a3aab55b1625}, language = {English}, urldate = {2021-07-02} } Security Control Mappings: A Starting Point for Threat-Informed Defense
2021-06-28Trend MicroTrend Micro
@online{micro:20210628:nefilim:1a904b2, author = {Trend Micro}, title = {{Nefilim Ransomware Attack Through a MITRE Att&ck Lens}}, date = {2021-06-28}, organization = {Trend Micro}, url = {https://www.trendmicro.com/en_us/research/21/f/nefilim-modern-ransomware-attack-story.html}, language = {English}, urldate = {2021-07-05} } Nefilim Ransomware Attack Through a MITRE Att&ck Lens
Nefilim
2021-03-19MITREMITRE ATT&CK
@online{attck:20210319:ta551:48627e5, author = {MITRE ATT&CK}, title = {{TA551}}, date = {2021-03-19}, organization = {MITRE}, url = {https://attack.mitre.org/groups/G0127/}, language = {English}, urldate = {2022-07-13} } TA551
GOLD CABIN
2021-03-08Youtube (SANS Digital Forensics and Incident Response)Katie Nickels, Adam Pennington, Jen Burns
@online{nickels:20210308:star:083eb29, author = {Katie Nickels and Adam Pennington and Jen Burns}, title = {{STAR Webcast: Making sense of SolarWinds through the lens of MITRE ATT&CK(R)}}, date = {2021-03-08}, organization = {Youtube (SANS Digital Forensics and Incident Response)}, url = {https://www.youtube.com/watch?v=LA-XE5Jy2kU}, language = {English}, urldate = {2021-03-11} } STAR Webcast: Making sense of SolarWinds through the lens of MITRE ATT&CK(R)
Cobalt Strike SUNBURST TEARDROP
2021-03-03MITREMITRE ATT&CK
@online{attck:20210303:hafnium:e35dcb1, author = {MITRE ATT&CK}, title = {{HAFNIUM}}, date = {2021-03-03}, organization = {MITRE}, url = {https://attack.mitre.org/groups/G0125/}, language = {English}, urldate = {2022-07-05} } HAFNIUM
CHINACHOPPER HAFNIUM
2021-01-06MITREMITRE ATT&CK
@online{attck:20210106:attck:841bad7, author = {MITRE ATT&CK}, title = {{ATT&CK Navigator layer for UNC2452}}, date = {2021-01-06}, organization = {MITRE}, url = {https://mitre-attack.github.io/attack-navigator/#layerURL=https://raw.githubusercontent.com/center-for-threat-informed-defense/public-resources/master/solorigate/UNC2452.json}, language = {English}, urldate = {2021-01-11} } ATT&CK Navigator layer for UNC2452
SUNBURST
2021MITRE
@online{mitre:2021:groups:35abb07, author = {MITRE}, title = {{Groups Overview of MITRE}}, date = {2021}, url = {https://attack.mitre.org/wiki/Groups}, language = {English}, urldate = {2021-07-26} } Groups Overview of MITRE
DragonOK Poseidon Group Scarlet Mimic
2020-12-22Medium mitre-attackMatt Malone, Adam Pennington
@online{malone:20201222:identifying:259fcd9, author = {Matt Malone and Adam Pennington}, title = {{Identifying UNC2452-Related Techniques for ATT&CK}}, date = {2020-12-22}, organization = {Medium mitre-attack}, url = {https://medium.com/mitre-attack/identifying-unc2452-related-techniques-9f7b6c7f3714}, language = {English}, urldate = {2020-12-23} } Identifying UNC2452-Related Techniques for ATT&CK
SUNBURST TEARDROP UNC2452
2020-12-15Trend MicroLenart Bermejo, Gilbert Sison, Buddy Tancio
@techreport{bermejo:20201215:finding:f68f005, author = {Lenart Bermejo and Gilbert Sison and Buddy Tancio}, title = {{Finding APTX: Attacks via MITRE TTPs}}, date = {2020-12-15}, institution = {Trend Micro}, url = {https://documents.trendmicro.com/assets/white_papers/wp-finding-APTX-attributing-attacks-via-MITRE-TTPs.pdf}, language = {English}, urldate = {2020-12-17} } Finding APTX: Attacks via MITRE TTPs
Chinoxy
2020-05-08MITREMITRE ATT&CK
@online{attck:20200508:inception:354e1e3, author = {MITRE ATT&CK}, title = {{Inception}}, date = {2020-05-08}, organization = {MITRE}, url = {https://attack.mitre.org/groups/G0100}, language = {English}, urldate = {2022-08-26} } Inception
PowerShower LaZagne Inception Framework
2020-05-08MITREMITRE ATT&CK
@online{attck:20200508:inception:a4454ac, author = {MITRE ATT&CK}, title = {{Inception}}, date = {2020-05-08}, organization = {MITRE}, url = {https://attack.mitre.org/groups/G0100/}, language = {English}, urldate = {2022-07-05} } Inception
PowerShower LaZagne
2019-11-14Youtube (mitrecorp)Karl Scheuerman, Piotr Wojtyla
@online{scheuerman:20191114:mitre:45c59cb, author = {Karl Scheuerman and Piotr Wojtyla}, title = {{MITRE ATT&CKcon 2.0: How a Threat Hunting Team Has Upgraded Its Use of ATT&CK}}, date = {2019-11-14}, organization = {Youtube (mitrecorp)}, url = {https://youtu.be/hAsKp43AZmM?t=1027}, language = {English}, urldate = {2020-04-28} } MITRE ATT&CKcon 2.0: How a Threat Hunting Team Has Upgraded Its Use of ATT&CK
Kimsuky
2019-10-11MITREMITRE
@online{mitre:20191011:credential:8272dc5, author = {MITRE}, title = {{Credential Dumping}}, date = {2019-10-11}, organization = {MITRE}, url = {https://attack.mitre.org/wiki/Technique/T1003}, language = {English}, urldate = {2020-01-13} } Credential Dumping
gsecdump
2019-09-23MITREMITRE ATT&CK
@online{attck:20190923:apt41:63b9ff7, author = {MITRE ATT&CK}, title = {{APT41}}, date = {2019-09-23}, organization = {MITRE}, url = {https://attack.mitre.org/groups/G0096}, language = {English}, urldate = {2022-08-30} } APT41
Derusbi MESSAGETAP Winnti ASPXSpy BLACKCOFFEE CHINACHOPPER Cobalt Strike Derusbi Empire Downloader Ghost RAT MimiKatz NjRAT PlugX ShadowPad Winnti ZXShell APT41
2019-09-13MITREMITRE ATT&CK
@online{attck:20190913:machete:bc6c8e1, author = {MITRE ATT&CK}, title = {{Machete}}, date = {2019-09-13}, organization = {MITRE}, url = {https://attack.mitre.org/groups/G0095/}, language = {English}, urldate = {2022-07-13} } Machete
El Machete
2019-08-08MITRETimothy L. Thomas
@techreport{thomas:20190808:russian:f7dfe52, author = {Timothy L. Thomas}, title = {{Russian Military Thought: Concepts and Elements}}, date = {2019-08-08}, institution = {MITRE}, url = {https://www.mitre.org/sites/default/files/publications/pr-19-1004-russian-military-thought-concepts-elements.pdf}, language = {English}, urldate = {2020-10-23} } Russian Military Thought: Concepts and Elements
2019-05-28MITREMITRE
@online{mitre:20190528:flawedammyy:c4f6363, author = {MITRE}, title = {{FlawedAmmyy}}, date = {2019-05-28}, organization = {MITRE}, url = {https://attack.mitre.org/software/S0381/}, language = {English}, urldate = {2020-01-13} } FlawedAmmyy
FlawedAmmyy
2019-03-22MITREMITRE
@online{mitre:20190322:apt30:83830f2, author = {MITRE}, title = {{APT30}}, date = {2019-03-22}, organization = {MITRE}, url = {https://attack.mitre.org/wiki/Group/G0013}, language = {English}, urldate = {2020-01-09} } APT30
APT30