subject

Match each phase of the cyber kill chain with its correct definition 1. Coupling a remote access trojan with an exploit into a deliverable payload, typically by means of an automated tool (weaponizer). Increasingly, client application data files suchas Adobe Portable Document Format (PDF) or Microsoft Office documents serve as the weaponizeddeliverable.
2. Transmission of the weapon to the targeted environment. The three most prevalentdelivery vectors for weaponized payloads by APT actors, as observed by the Lockheed MartinComputer Incident Response Team (LM-CIRT) for the years 2004-2010, are email attachments, websites, and USB removable media.

3. After the weapon is delivered to victim host, exploitation triggers intruders’ code. Most often, exploitation targets an application or operating system vulnerability, but it could alsomore simply exploit the users themselves or leverage an operating system feature that auto-executescode.

4. Installation of a remote access trojan or backdoor on the victim system allows theadversary to maintain persistence inside the environment.
5. Typically, compromised hosts must beacon outbound to anInternet controller server to establish a C2 channel. APT malware especially requires manualinteraction rather than conduct activity automatically. Once the C2 channel establishes, intrudershave "hands on the keyboard" access inside the target environment.

6. Only now, after progressing through the first six phases, can intruderstake actions to achieve their original objectives. Typically, this objective is data exfiltration whichinvolves collecting, encrypting and extracting information from the victim environment; violationsof data integrity or availability are potential objectives as well. Alternatively, the intruders mayonly desire access to the initial victim box for use as a hop point to compromise additional systemsand move laterally inside the network.

a. Weaponization
b. Delivery
c. Exploitation
d. Installation
e. Command and Control (C2)
f. Actions on Objectives

ansver
Answers: 2

Another question on Computers and Technology

question
Computers and Technology, 23.06.2019 11:00
What are the possible consequences of computer hacking? what is computer piracy? describe some examples. what are the effects of computer piracy? what are the possible consequences of computer piracy? what is intentional virus setting? describe some examples. what are the effects of intentional virus setting? what are the possible consequences of intentional virus setting? what is invasion of privacy? describe some examples. what are the effects of invasion of privacy? what are the possible consequences of invasion of privacy? what is an acceptable use policy and what is the purpose of the acceptable use policy what is intellectual property and how can you use it?
Answers: 1
question
Computers and Technology, 24.06.2019 00:00
Which tool could be used to display only rows containing presidents who served two terms
Answers: 3
question
Computers and Technology, 24.06.2019 05:30
Someone plzz me which of these defines a social search? a. asking a search engine a question that is answered by a real person on the other sideb. modifying search results based on popularity of a web pagec.modifying search results based on a ranking of a web page
Answers: 2
question
Computers and Technology, 24.06.2019 13:00
Refer to the figure and match the theorem that supports the statement.1.if chords are =, then arcs are =.if bc = de, then arc bc = arc de2.if arcs are =, then chords are =.if arc bc = arc de, then bc = de3.diameters perpen
Answers: 3
You know the right answer?
Match each phase of the cyber kill chain with its correct definition 1. Coupling a remote access tr...
Questions
question
German, 11.02.2020 23:24
question
Mathematics, 11.02.2020 23:24
question
Mathematics, 11.02.2020 23:24
question
Spanish, 11.02.2020 23:24