ATT&CK 기법 · Credential Access · Collection

Adversary-in-the-Middle T1557

이 기법을 다룬 REVELARE 한국어 위협 분석 3편 · Credential Access · Collection

이 기법을 다룬 분석

T1557

BlackFile UNC6671: 비싱·AiTM 갈취 12곳 침투

T1557

Mustang Panda의 CoolClient: PlugX 이후 3가지 새로...

T1557

Reprompt: Microsoft Copilot 클릭 1번으로 데이터 탈취

MITRE 공식 정의

Adversaries may attempt to position themselves between two or more networked devices using an adversary-in-the-middle (AiTM) technique to support follow-on behaviors such as [Network Sniffing](https://attack.mitre.org/techniques/T1040), [Transmitted Data Manipulation](https://attack.mitre.org/techniques/T1565/002), or replay attacks ([Exploitation for Credential Access](https://attack.mitre.org/techniques/T1212)). By abusing features of common networking protocols that can de…

attack.mitre.org ↗ATT&CK 매트릭스

플랫폼: Linux, macOS, Network Devices, Windows