Attack framwork

Question 1

Kill Chain

Answer 1

A model by LM that describes the stage of a threat actors operation

Question 2

What are the 7 steps to a kill chain

Answer 2

Rhonda wet dads eggs in colorado already
Recon
Weaponization 
Delivery
Exploitation
Installation 
C2
Actions on Objective

Question 3

Reconnaissance Kill chain

Answer 3

Attacker determines what methods to use

Using open source and passive information gathering

Question 4

Weaponization - Kill chain

Answer 4

Attacker couples payload code that will enable access with exploit code that will use a vulnerability to execute on the system

coding or creating the malware but its not executed yet

Question 5

Delivery

Answer 5

`Attacker choses avenue of approach. Via email, application, etc

Question 6

Exploitation

Answer 6

The exececution of the code.

clicking the link

Question 7

Installation

Answer 7

allows the code to run a RAT to give control

Question 8

C2

Answer 8

Esstablishes the outbound channel to remote server

Question 9

Actions on Obj

Answer 9

execute goals

Question 10

Kill chain analysis

Answer 10

defense course of action matrix to counter progress

Question 11

MITRE ATT&CK Framework

Answer 11

a knowledge base list that you use to help stop future or progressing attacks

Question 12

Pre- ATT&ck

Answer 12

Helps with recon and weapon phases

Question 13

Diamond Model of Intrusion Analysis

Answer 13

analysis CS incidents and intrustions by looking at Adversary, caoability, infrastruction, and victim