subject

Match each phase of the cyber kill chain with its correct definition 1. Coupling a remote access trojan with an exploit into a deliverable payload, typically by means of an automated tool (weaponizer). Increasingly, client application data files suchas Adobe Portable Document Format (PDF) or Microsoft Office documents serve as the weaponizeddeliverable.
2. Transmission of the weapon to the targeted environment. The three most prevalentdelivery vectors for weaponized payloads by APT actors, as observed by the Lockheed MartinComputer Incident Response Team (LM-CIRT) for the years 2004-2010, are email attachments, websites, and USB removable media.

3. After the weapon is delivered to victim host, exploitation triggers intruders’ code. Most often, exploitation targets an application or operating system vulnerability, but it could alsomore simply exploit the users themselves or leverage an operating system feature that auto-executescode.

4. Installation of a remote access trojan or backdoor on the victim system allows theadversary to maintain persistence inside the environment.
5. Typically, compromised hosts must beacon outbound to anInternet controller server to establish a C2 channel. APT malware especially requires manualinteraction rather than conduct activity automatically. Once the C2 channel establishes, intrudershave "hands on the keyboard" access inside the target environment.

6. Only now, after progressing through the first six phases, can intruderstake actions to achieve their original objectives. Typically, this objective is data exfiltration whichinvolves collecting, encrypting and extracting information from the victim environment; violationsof data integrity or availability are potential objectives as well. Alternatively, the intruders mayonly desire access to the initial victim box for use as a hop point to compromise additional systemsand move laterally inside the network.

a. Weaponization
b. Delivery
c. Exploitation
d. Installation
e. Command and Control (C2)
f. Actions on Objectives

ansver
Answers: 2

Another question on Computers and Technology

question
Computers and Technology, 21.06.2019 21:00
When a rectangular region is defined using an appropriate style, which value matches the specified edge of the clipping region to the edge of the parent element?
Answers: 3
question
Computers and Technology, 22.06.2019 17:00
What allows you to create a wireless connection among your smart devices
Answers: 2
question
Computers and Technology, 24.06.2019 14:30
Two students are discussing the flow of electricity. student a says that voltage is a measure of the amount of electron flow in a circuit. student b says that power is the product of voltage and current. which of the following statements is correct? a. only student a is correct b. only student b is correct c. both of the two students are correct d. neither of the two students is correct
Answers: 1
question
Computers and Technology, 24.06.2019 20:00
Write c++programs for the following problem: let the user enter two numbers and display which is greater. !
Answers: 1
You know the right answer?
Match each phase of the cyber kill chain with its correct definition 1. Coupling a remote access tr...
Questions
question
Mathematics, 16.07.2019 13:30
question
Mathematics, 16.07.2019 13:30