본문으로 바로가기

ATT&CK 기법 · Credential Access · Discovery

Network Sniffing T1040

이 기법을 다룬 REVELARE 한국어 위협 분석 1 · Credential Access · Discovery

이 기법을 다룬 분석

MITRE 공식 정의

Adversaries may passively sniff network traffic to capture information about an environment, including authentication material passed over the network. Network sniffing refers to using the network interface on a system to monitor or capture information sent over a wired or wireless connection. An adversary may place a network interface into promiscuous mode to passively access data in transit over the network, or use span ports to capture a larger amount of data. Data captur

플랫폼: IaaS, Linux, macOS, Network Devices, Windows
Network Sniffing (T1040) — ATT&CK 기법 분석 | REVELARE