ABOUT
Overview
Use Cases
Mapping Methodology
Scoring Rubric
Related Projects
ATT&CK OBJECTS
Matrix
Tactics
Techniques
MAPPING FRAMEWORKS
About Mappings
Amazon Web Services (AWS)
Azure
CVE
Google Cloud Platform (GCP)
NIST 800-53
M365
VERIS
You're currently viewing ATT&CK Version 14.1 Enterprise and M365 12.11.2023.
Change versions here.
Home
Mapping Frameworks
M365 Home
Zero Hour Auto Purge
M365
M365-DEF-ZAP-E3
Mappings
Zero-hour auto purge (ZAP) is a protection feature in in Microsoft Defender for Office 365 that automatically detects and neutralizes threats in email, including malicious phishing, spam, or malware messages.
Mappings
ATT&CK Version
14.1
ATT&CK Domain
Enterprise
M365
12.11.2023
Change Versions
Capability ID
Capability Description
Mapping Type
ATT&CK ID
ATT&CK Name
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1204.001
Malicious Link
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1204.002
Malicious File
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1204
User Execution
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1080
Taint Shared Content
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1027
Obfuscated Files or Information
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1036
Masquerading
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1059.006
Python
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1059.009
Cloud API
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1059.001
PowerShell
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1059
Command and Scripting Interpreter
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1656
Impersonation
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1534
Internal Spearphishing
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1566.002
Spearphishing Link
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1566.001
Spearphishing Attachment
M365-DEF-ZAP-E3
Zero Hour Auto Purge
Technique Scores
T1566
Phishing
