Home
Mapping Frameworks
Azure Home
Azure Private Link

Azure azure_private_link Mappings

Azure Private Link enables you to access Azure PaaS Services (for example, Azure Storage and SQL Database) and Azure hosted customer-owned/partner services over a private endpoint in your virtual network. Traffic between your virtual network and the service travels the Microsoft backbone network. Exposing your service to the public internet is no longer necessary. You can create your own private link service in your virtual network and deliver it to your customers. Setup and consumption using Azure Private Link is consistent across Azure PaaS, customer-owned, and shared partner services.

Mappings

Capability ID	Capability Description	Category	Value	ATT&CK ID	ATT&CK Name	Notes
azure_private_link	Azure Private Link	protect	partial	T1557	Man-in-the-Middle	Comments This control provides partial protection for this technique's sub-techniques resulting in an overall Partial score. References https://docs.microsoft.com/azure/private-link/private-link-overview
azure_private_link	Azure Private Link	protect	partial	T1557.002	ARP Cache Poisoning	Comments This control reduces the likelihood of MiTM for traffic between remote users, cloud, and 3rd parties by routing the traffic via the Microsoft backbone rather than over the Internet. References
azure_private_link	Azure Private Link	protect	partial	T1557.001	LLMNR/NBT-NS Poisoning and SMB Relay	Comments This control reduces the likelihood of MiTM for traffic between remote users, cloud, and 3rd parties by routing the traffic via the Microsoft backbone rather than over the Internet. References
azure_private_link	Azure Private Link	protect	minimal	T1565	Data Manipulation	Comments This control provides partial protection for one of this technique's sub-techniques resulting in an overall Minimal score. References https://docs.microsoft.com/azure/private-link/private-link-overview
azure_private_link	Azure Private Link	protect	partial	T1565.002	Transmitted Data Manipulation	Comments This control reduces the likelihood of data manipulation for traffic between remote users, cloud, and 3rd parties by routing the traffic via the Microsoft backbone rather than over the Internet. References
azure_private_link	Azure Private Link	protect	partial	T1499	Endpoint Denial of Service	Comments Prevents Denial of Service (DOS) against systems that would otherwise need to connect via an internet-traversing path (coverage partial, since doesn't apply to systems that must be directly exposed to the Internet) References https://docs.microsoft.com/azure/private-link/private-link-overview
azure_private_link	Azure Private Link	protect	partial	T1499.004	Application or System Exploitation
azure_private_link	Azure Private Link	protect	partial	T1499.003	Application Exhaustion Flood
azure_private_link	Azure Private Link	protect	partial	T1499.002	Service Exhaustion Flood
azure_private_link	Azure Private Link	protect	partial	T1499.001	OS Exhaustion Flood
azure_private_link	Azure Private Link	protect	partial	T1498	Network Denial of Service	Comments Prevents Denial of Service (DOS) against systems that would otherwise need to connect via an internet-traversing path (coverage partial, since doesn't apply to systems that must be directly exposed to the Internet) References https://docs.microsoft.com/azure/private-link/private-link-overview
azure_private_link	Azure Private Link	protect	partial	T1498.002	Reflection Amplification
azure_private_link	Azure Private Link	protect	partial	T1498.001	Direct Network Flood
azure_private_link	Azure Private Link	protect	partial	T1040	Network Sniffing	Comments This control reduces the likelihood of a network sniffing attack for traffic between remote users, cloud, and 3rd parties by routing the traffic via the Microsoft backbone rather than over the Internet. References https://docs.microsoft.com/azure/private-link/private-link-overview