ABOUT
Overview
Use Cases
Mapping Methodology
Scoring Rubric
Related Projects
ATT&CK OBJECTS
Matrix
Tactics
Techniques
MAPPING FRAMEWORKS
About Mappings
Amazon Web Services (AWS)
Azure
CSA Cloud Controls Matrix (CCM)
CRI Profile
Known Exploited Vulnerabilities
Google Cloud Platform (GCP)
Intel vPro
NIST 800-53
M365
VERIS
You're currently viewing ATT&CK Version 16.1 Enterprise and VERIS 1.4.0.
Change versions here.
Home
Mapping Frameworks
VERIS Home
Exploit a misconfiguration (vs vuln or weakness)
VERIS
action.hacking.variety.Exploit misconfig
Mappings
ATT&CK Version
16.1
ATT&CK Domain
Enterprise
VERIS
1.4.0
Change Versions
Capability ID
Capability Description
Mapping Type
ATT&CK ID
ATT&CK Name
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1068
Exploitation for Privilege Escalation
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1190
Exploit Public-Facing Application
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1212
Exploitation for Credential Access
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1548.002
Bypass User Account Control
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1548.003
Sudo and Sudo Caching
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1548.004
Elevated Execution with Prompt
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1558.004
AS-REP Roasting
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.001
DLL Search Order Hijacking
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.002
DLL Side-Loading
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.005
Executable Installer File Permissions Weakness
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.010
Services File Permissions Weakness
action.hacking.variety.Exploit misconfig
Exploit a misconfiguration (vs vuln or weakness)
related-to
T1574.011
Services Registry Permissions Weakness
