ABOUT
Overview
Use Cases
Mapping Methodology
Scoring Rubric
Related Projects
ATT&CK OBJECTS
Matrix
Tactics
Techniques
MAPPING FRAMEWORKS
About Mappings
Amazon Web Services (AWS)
Azure
CVE
Google Cloud Platform (GCP)
NIST 800-53
M365
VERIS
You're currently viewing ATT&CK Version 8.2 Enterprise and Azure 06.29.2021.
Change versions here.
Home
Mapping Frameworks
Azure Home
Azure Alerts for Network Layer Capability Group
Azure
Azure Alerts for Network Layer
Capability Group
All Mappings
ATT&CK Version
8.2
ATT&CK Domain
Enterprise
Azure
06.29.2021
Change Versions
Capability ID
Capability Description
Category
Value
ATT&CK ID
ATT&CK Name
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
significant
T1110
Brute Force
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
significant
T1110.003
Password Spraying
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
significant
T1110.001
Password Guessing
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
significant
T1110.004
Credential Stuffing
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
minimal
T1071
Application Layer Protocol
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
minimal
T1071.004
DNS
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
minimal
T1071.003
Mail Protocols
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
minimal
T1071.002
File Transfer Protocols
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
minimal
T1071.001
Web Protocols
azure_alerts_for_network_layer
Azure Alerts for Network Layer
detect
partial
T1133
External Remote Services
Capabilities
ATT&CK Version
8.2
ATT&CK Domain
Enterprise
Azure
06.29.2021
Change Versions
Capability ID
Capability Name
Number of Mappings
azure_alerts_for_network_layer
Azure Alerts for Network Layer
10
