1. Home
  2. ATT&CK Techniques
  3. T1213.001 Confluence

T1213.001 Confluence Mappings

Adversaries may leverage Confluence repositories to mine valuable information. Often found in development environments alongside Atlassian JIRA, Confluence is generally used to store development-related documentation, however, in general may contain more diverse categories of useful information, such as:

  • Policies, procedures, and standards
  • Physical / logical network diagrams
  • System architecture diagrams
  • Technical system documentation
  • Testing / development credentials
  • Work / project schedules
  • Source code snippets
  • Links to network shares and other internal resources
View in MITRE ATT&CK®

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
AC-16 Security and Privacy Attributes Protects T1213.001 Confluence
AC-17 Remote Access Protects T1213.001 Confluence
AC-2 Account Management Protects T1213.001 Confluence
AC-21 Information Sharing Protects T1213.001 Confluence
AC-23 Data Mining Protection Protects T1213.001 Confluence
AC-3 Access Enforcement Protects T1213.001 Confluence
AC-4 Information Flow Enforcement Protects T1213.001 Confluence
AC-5 Separation of Duties Protects T1213.001 Confluence
AC-6 Least Privilege Protects T1213.001 Confluence
CA-7 Continuous Monitoring Protects T1213.001 Confluence
CA-8 Penetration Testing Protects T1213.001 Confluence
CM-2 Baseline Configuration Protects T1213.001 Confluence
CM-3 Configuration Change Control Protects T1213.001 Confluence
CM-5 Access Restrictions for Change Protects T1213.001 Confluence
CM-6 Configuration Settings Protects T1213.001 Confluence
CM-7 Least Functionality Protects T1213.001 Confluence
CM-8 System Component Inventory Protects T1213.001 Confluence
IA-2 Identification and Authentication (organizational Users) Protects T1213.001 Confluence
IA-4 Identifier Management Protects T1213.001 Confluence
IA-8 Identification and Authentication (non-organizational Users) Protects T1213.001 Confluence
RA-5 Vulnerability Monitoring and Scanning Protects T1213.001 Confluence
SC-28 Protection of Information at Rest Protects T1213.001 Confluence
SI-4 System Monitoring Protects T1213.001 Confluence
SI-7 Software, Firmware, and Information Integrity Protects T1213.001 Confluence
action.malware.variety.Capture stored data Capture data stored on system disk related-to T1213.001 Data from Information Repositories: Confluence