ATT&CK 기법 · Persistence · Defense Impairment
Modify Registry T1112
이 기법을 다룬 REVELARE 한국어 위협 분석 0편 · Persistence · Defense Impairment
아직 이 기법을 직접 다룬 분석이 없습니다.
MITRE 공식 정의
Adversaries may interact with the Windows Registry as part of a variety of other techniques to aid in defense evasion, persistence, and execution. Access to specific areas of the Registry depends on account permissions, with some keys requiring administrator-level access. The built-in Windows command-line utility [Reg](https://attack.mitre.org/software/S0075) may be used for local or remote Registry modification.(Citation: Microsoft Reg) Other tools, such as remote access to…
플랫폼: Windows