Skip to content

Hide Navigation Hide TOC

Socket-filter trigger → on-host raw-socket activity → reverse connection (T1205.002) - DET0162 (b4cdf164-9cb7-4cad-bdc3-81b5574f364a)

None

Cluster A Galaxy A Cluster B Galaxy B Level
Socket Filters - T1205.002 (005cc321-08ce-4d17-b1ea-cb5275926520) Attack Pattern Socket-filter trigger → on-host raw-socket activity → reverse connection (T1205.002) - DET0162 (b4cdf164-9cb7-4cad-bdc3-81b5574f364a) Detection Strategies 1
Analytic 0462 - AN0462 (98d733c2-370b-4cd0-8ec6-226a1ca19604) Analytics Socket-filter trigger → on-host raw-socket activity → reverse connection (T1205.002) - DET0162 (b4cdf164-9cb7-4cad-bdc3-81b5574f364a) Detection Strategies 1
Socket-filter trigger → on-host raw-socket activity → reverse connection (T1205.002) - DET0162 (b4cdf164-9cb7-4cad-bdc3-81b5574f364a) Detection Strategies Analytic 0464 - AN0464 (e6d04b50-7bdc-480e-9bda-291db9b270f6) Analytics 1
Socket-filter trigger → on-host raw-socket activity → reverse connection (T1205.002) - DET0162 (b4cdf164-9cb7-4cad-bdc3-81b5574f364a) Detection Strategies Analytic 0463 - AN0463 (c19f8f89-76f9-4345-8bb6-a065fba50bff) Analytics 1
Socket Filters - T1205.002 (005cc321-08ce-4d17-b1ea-cb5275926520) Attack Pattern Traffic Signaling - T1205 (451a9977-d255-43c9-b431-66de80130c8c) Attack Pattern 2