mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-13 19:05:17 +03:00
Fix round 3: refine MITRE ATT&CK mappings per CodeRabbit review
- osquery: replace broad IDs with concrete detections (T1049, T1620, T1053.003, T1548.001, T1552) - credential extraction: replace T1550 with T1552 (Unsecured Credentials) - persistence investigation: use sub-techniques (T1547.001, T1053.005, T1543.003, T1546.003)
This commit is contained in:
committed by
Julio César Suástegui
parent
15d53bd09b
commit
c7ad5e7b98
@@ -4,6 +4,7 @@ description: Extract cached credentials, password hashes, Kerberos tickets, and
|
||||
domain: cybersecurity
|
||||
subdomain: digital-forensics
|
||||
tags: [forensics, credential-extraction, memory-forensics, volatility, mimikatz, password-hashes, incident-response]
|
||||
mitre_attack: ["T1003", "T1558", "T1552"]
|
||||
version: "1.0"
|
||||
author: mahipal
|
||||
license: Apache-2.0
|
||||
|
||||
Reference in New Issue
Block a user