1. Home
  2. Mapping Frameworks
  3. Azure Home
  4. Network Security Groups

Azure network_security_groups Mappings

You can use an Azure network security group to filter network traffic to and from Azure resources in an Azure virtual network. A network security group contains security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources. For each rule, you can specify source and destination, port, and protocol.

Mappings

Capability ID Capability Description Category Value ATT&CK ID ATT&CK Name
network_security_groups Network Security Groups protect partial T1199 Trusted Relationship
network_security_groups Network Security Groups protect partial T1557 Man-in-the-Middle
network_security_groups Network Security Groups protect partial T1602 Data from Configuration Repository
network_security_groups Network Security Groups protect partial T1602.002 Network Device Configuration Dump
network_security_groups Network Security Groups protect partial T1602.001 SNMP (MIB Dump)
network_security_groups Network Security Groups protect minimal T1542 Pre-OS Boot
network_security_groups Network Security Groups protect partial T1542.005 TFTP Boot
network_security_groups Network Security Groups protect significant T1048 Exfiltration Over Alternative Protocol
network_security_groups Network Security Groups protect significant T1048.003 Exfiltration Over Unencrypted/Obfuscated Non-C2 Protocol
network_security_groups Network Security Groups protect significant T1048.002 Exfiltration Over Asymmetric Encrypted Non-C2 Protocol
network_security_groups Network Security Groups protect significant T1048.001 Exfiltration Over Symmetric Encrypted Non-C2 Protocol
network_security_groups Network Security Groups protect partial T1210 Exploitation of Remote Services
network_security_groups Network Security Groups protect partial T1021 Remote Services
network_security_groups Network Security Groups protect partial T1021.006 Windows Remote Management
network_security_groups Network Security Groups protect partial T1021.005 VNC
network_security_groups Network Security Groups protect partial T1021.004 SSH
network_security_groups Network Security Groups protect partial T1021.003 Distributed Component Object Model
network_security_groups Network Security Groups protect partial T1021.002 SMB/Windows Admin Shares
network_security_groups Network Security Groups protect partial T1021.001 Remote Desktop Protocol
network_security_groups Network Security Groups protect partial T1072 Software Deployment Tools
network_security_groups Network Security Groups protect partial T1133 External Remote Services
network_security_groups Network Security Groups protect partial T1482 Domain Trust Discovery
network_security_groups Network Security Groups protect partial T1046 Network Service Scanning
network_security_groups Network Security Groups protect partial T1095 Non-Application Layer Protocol
network_security_groups Network Security Groups protect significant T1571 Non-Standard Port
network_security_groups Network Security Groups protect partial T1499 Endpoint Denial of Service
network_security_groups Network Security Groups protect partial T1499.003 Application Exhaustion Flood
network_security_groups Network Security Groups protect partial T1499.002 Service Exhaustion Flood
network_security_groups Network Security Groups protect partial T1499.001 OS Exhaustion Flood
network_security_groups Network Security Groups protect partial T1570 Lateral Tool Transfer
network_security_groups Network Security Groups protect partial T1498 Network Denial of Service
network_security_groups Network Security Groups protect partial T1090 Proxy
network_security_groups Network Security Groups protect partial T1090.003 Multi-hop Proxy
network_security_groups Network Security Groups protect partial T1090.002 External Proxy
network_security_groups Network Security Groups protect partial T1090.001 Internal Proxy
network_security_groups Network Security Groups protect partial T1219 Remote Access Software
network_security_groups Network Security Groups protect partial T1205 Traffic Signaling
network_security_groups Network Security Groups protect significant T1205.001 Port Knocking