Home
Mapping Frameworks
Azure Home
Azure VPN Gateway

Azure azure_vpn_gateway Mappings

A VPN gateway is a specific type of virtual network gateway that is used to send encrypted traffic between an Azure virtual network and an on-premises location over the public Internet. You can also use a VPN gateway to send encrypted traffic between Azure virtual networks over the Microsoft network.

Mappings

Capability ID	Capability Description	Category	Value	ATT&CK ID	ATT&CK Name	Notes
azure_vpn_gateway	Azure VPN Gateway	protect	significant	T1040	Network Sniffing	Comments This control encrypts traffic traversing over untrusted networks which can prevent information from being gathered via network sniffing. References https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpngateways
azure_vpn_gateway	Azure VPN Gateway	protect	significant	T1557	Man-in-the-Middle	Comments This control can mitigate Man-in-the-Middle attacks that manipulate network protocol data in transit. References https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpngateways
azure_vpn_gateway	Azure VPN Gateway	protect	significant	T1557.002	ARP Cache Poisoning
azure_vpn_gateway	Azure VPN Gateway	protect	significant	T1557.001	LLMNR/NBT-NS Poisoning and SMB Relay
azure_vpn_gateway	Azure VPN Gateway	protect	partial	T1565	Data Manipulation	Comments This control provides significant protection against one sub-technique (Transmitted Data Manipulation) of this technique while not providing protection for its remaining sub-techniques resulting in overall score of Partial. References https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-about-vpngateways
azure_vpn_gateway	Azure VPN Gateway	protect	significant	T1565.002	Transmitted Data Manipulation