ATT&CK 기법 · Credential Access
Steal Web Session Cookie T1539
이 기법을 다룬 REVELARE 한국어 위협 분석 4편 · Credential Access
이 기법을 다룬 분석
MITRE 공식 정의
An adversary may steal web application or service session cookies and use them to gain access to web applications or Internet services as an authenticated user without needing credentials. Web applications and services often use session cookies as an authentication token after a user has authenticated to a website. Cookies are often valid for an extended period of time, even if the web application is not actively used. Cookies can be found on disk, in the process memory of t…
플랫폼: Linux, macOS, Office Suite, SaaS, Windows