T1213.001 Confluence Mappings

Adversaries may leverage Confluence repositories to mine valuable information. Often found in development environments alongside Atlassian JIRA, Confluence is generally used to store development-related documentation, however, in general may contain more diverse categories of useful information, such as:

  • Policies, procedures, and standards
  • Physical / logical network diagrams
  • System architecture diagrams
  • Technical system documentation
  • Testing / development credentials
  • Work / project schedules
  • Source code snippets
  • Links to network shares and other internal resources
View in MITRE ATT&CK®

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
AC-16 Security and Privacy Attributes Protects T1213.001 Confluence
AC-17 Remote Access Protects T1213.001 Confluence
AC-02 Account Management Protects T1213.001 Confluence
AC-21 Information Sharing Protects T1213.001 Confluence
AC-23 Data Mining Protection Protects T1213.001 Confluence
AC-03 Access Enforcement Protects T1213.001 Confluence
AC-04 Information Flow Enforcement Protects T1213.001 Confluence
AC-05 Separation of Duties Protects T1213.001 Confluence
AC-06 Least Privilege Protects T1213.001 Confluence
CA-07 Continuous Monitoring Protects T1213.001 Confluence
CA-08 Penetration Testing Protects T1213.001 Confluence
CM-02 Baseline Configuration Protects T1213.001 Confluence
CM-03 Configuration Change Control Protects T1213.001 Confluence
CM-05 Access Restrictions for Change Protects T1213.001 Confluence
CM-06 Configuration Settings Protects T1213.001 Confluence
CM-07 Least Functionality Protects T1213.001 Confluence
CM-08 System Component Inventory Protects T1213.001 Confluence
IA-02 Identification and Authentication (organizational Users) Protects T1213.001 Confluence
IA-04 Identifier Management Protects T1213.001 Confluence
IA-08 Identification and Authentication (non-organizational Users) Protects T1213.001 Confluence
RA-05 Vulnerability Monitoring and Scanning Protects T1213.001 Confluence
SC-28 Protection of Information at Rest Protects T1213.001 Confluence
SI-04 System Monitoring Protects T1213.001 Confluence
SI-07 Software, Firmware, and Information Integrity Protects T1213.001 Confluence