LetsDefend Monitoring Alert

File and Directory Discovery Detected

May, 08, 2024, 06:36 AM

Event ID: 255

Event Time: May, 08, 2024, 06:36 AM

Rule Name: SOC279 - File and Directory Discovery Detected

Alert Type: C2

MITRE Technique:
T1110 - Credential Access - Brute Force,
T1105 - Command and Control - Ingress Tool Transfer,
T1133 - Initial Access - External Remote Services,
T1078 - Initial Access - Valid Accounts,
T1083 - Discovery - File and Directory Discovery,
T1567 - Exfiltration - Exfiltration Over Web Service,
T1005 - Collection - Data from Local System,
T1059.004 - Execution - Command and Scripting Interpreter: Unix Shell,

Severity: Medium

Incident Responder

2025 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166