Home >
Enterprise >
Participants >
Fortinet >
Remote System Discovery (T1018)
|
|
See technique results for:
Carbanak+FIN7 |
||||
Step | ATT&CK Pattern |
|
||
4.A.2
|
Tactic Discovery (TA0007) |
|
||
5.B.7
![]() |
Tactic Discovery (TA0007) |
|
||
6.A.2
|
Tactic Discovery (TA0007) |
|
||
15.A.8
|
Tactic Discovery (TA0007) |
|
Criteria
User kmitnick enumerates the domain controller via nslookup, which queries for the DC (10.0.0.4) over DNS (port 53)