| OS Credential Dumping - T1003 (0a3ead4e-6d47-4ccb-854c-a6a4f9d96b22) |
Attack Pattern |
Credential Dumping via Sensitive Memory and Registry Access Correlation - DET0234 (8b8cfd0f-bbe2-417b-b1d2-eebf84d3f008) |
Detection Strategies |
1 |
| Analytic 0650 - AN0650 (29370f2b-0877-458c-8ade-a9a23b8fb7b2) |
Analytics |
Credential Dumping via Sensitive Memory and Registry Access Correlation - DET0234 (8b8cfd0f-bbe2-417b-b1d2-eebf84d3f008) |
Detection Strategies |
1 |
| Analytic 0649 - AN0649 (82cdec5a-52af-4489-b002-b0256e5ba60e) |
Analytics |
Credential Dumping via Sensitive Memory and Registry Access Correlation - DET0234 (8b8cfd0f-bbe2-417b-b1d2-eebf84d3f008) |
Detection Strategies |
1 |
| Analytic 0648 - AN0648 (5a5d5ff5-e2bb-4ba9-9f95-504c86b1a1cf) |
Analytics |
Credential Dumping via Sensitive Memory and Registry Access Correlation - DET0234 (8b8cfd0f-bbe2-417b-b1d2-eebf84d3f008) |
Detection Strategies |
1 |