ABOUT
Overview
Use Cases
Mapping Methodology
Scoring Rubric
Related Projects
ATT&CK OBJECTS
Matrix
Tactics
Techniques
MAPPING FRAMEWORKS
About Mappings
Amazon Web Services (AWS)
Azure
CVE
Google Cloud Platform (GCP)
Intel vPro
NIST 800-53
M365
VERIS
You're currently viewing ATT&CK Version 16.1 Enterprise and VERIS 1.4.0.
Change versions here.
Home
Mapping Frameworks
VERIS Home
Adversary-in-the-middle attack. Child of 'Exploit vuln'
VERIS
action.hacking.variety.AiTM
Mappings
Mappings
ATT&CK Version
16.1
ATT&CK Domain
Enterprise
VERIS
1.4.0
Change Versions
Capability ID
Capability Description
Mapping Type
ATT&CK ID
ATT&CK Name
action.hacking.variety.AiTM
Adversary-in-the-middle attack. Child of 'Exploit vuln'
related-to
T1111
Two-Factor Authentication Interception
action.hacking.variety.AiTM
Adversary-in-the-middle attack. Child of 'Exploit vuln'
related-to
T1185
Browser Session Hijacking
action.hacking.variety.AiTM
Adversary-in-the-middle attack. Child of 'Exploit vuln'
related-to
T1187
Forced Authentication
action.hacking.variety.AiTM
Adversary-in-the-middle attack. Child of 'Exploit vuln'
related-to
T1539
Steal Web Session Cookie
action.hacking.variety.AiTM
Adversary-in-the-middle attack. Child of 'Exploit vuln'
related-to
T1557
Man-in-the-Middle
action.hacking.variety.AiTM
Adversary-in-the-middle attack. Child of 'Exploit vuln'
related-to
T1557.001
Man-in-the-Middle: LLMNR/NBT-NS Poisoning and Relay
action.hacking.variety.AiTM
Adversary-in-the-middle attack. Child of 'Exploit vuln'
related-to
T1557.002
Adversary-in-the-Middle: ARP Cache Poisoning
