Shell Execution via Find - Linux (6adfbf8f-52be-4444-9bac-81b539624146)
Detects the use of the find command to execute a shell. Such behavior may be associated with privilege escalation, unauthorized command execution, or exploitation attempt.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Shell Execution via Find - Linux (6adfbf8f-52be-4444-9bac-81b539624146) | Sigma-Rules | File and Directory Discovery - T1083 (7bc57495-ea59-4380-be31-a64af124ef18) | Attack Pattern | 1 |