CAPEC 643 Identify Shared Files/Directories on System

Draft Detailed Medium Risk

Severity Medium

Description

An adversary discovers connections between systems by exploiting the target system's standard practice of revealing them in searchable, common areas. Through the identification of shared folders/drives between systems, the adversary may further their goals of locating and collecting sensitive information/files, or map potential routes for lateral movement within the network.

CAPEC 643 Identify Shared Files/Directories on System

Description

Mitigations

Identify Unnecessary System Utilities Or Potentially Malicious Software That May Contain Functionality To Identify Network Share Information, And Audit And/Or Block Them By Using Allowlist Tools.

Consequences

Security Scopes Affected

Potential Impacts

Relationships

Parent CAPECs

Related ATT&CK Techniques

Network Share Discovery

Resources Required

CAPEC 643 Identify Shared Files/Directories on System

Description

Mitigations

Identify Unnecessary System Utilities Or Potentially Malicious Software That May Contain Functionality To Identify Network Share Information, And Audit And/Or Block Them By Using Allowlist Tools.

Consequences

Security Scopes Affected

Potential Impacts

Relationships

Parent CAPECs

Related ATT&CK Techniques

Network Share Discovery

Resources Required

Iscriviti alla newsletter