Hide Navigation Hide TOC

Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)

Use secure methods to boot a system and verify the integrity of the operating system and loading mechanisms.

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Code Signing Policy Modification - T1553.006 (565275d5-fcc3-4b66-b4e7-928e4cac6b8c)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Patch System Image - T1601.001 (d245808a-7086-4310-984a-a84aaaa43f8f)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Pre-OS Boot - T1542 (7f0ca133-88c4-40c6-a62f-b3083a7fbc2e)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Supply Chain Compromise - T1195 (3f18edba-28f4-4bb9-82c3-8aa60dcac5f7)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Bootkit - T1542.003 (1b7b1806-7746-41a1-a35d-e48dae25ddba)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	TFTP Boot - T1542.005 (28abec6c-4443-4b03-8206-07f2e264a6b4)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Modify System Image - T1601 (ae7f3575-0a5e-427e-991b-fe03ad44c754)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Compromise Hardware Supply Chain - T1195.003 (39131305-9282-45e4-ac3b-591d2d4fc3ef)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Firmware Corruption - T1495 (f5bb433e-bdf6-4781-84bc-35e97e43be89)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	ROMMONkit - T1542.004 (a6557c75-798f-42e4-be70-ab4502e0a3bc)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	System Firmware - T1542.001 (16ab6452-c3c1-497c-a47d-206018ca1ada)	Attack Pattern	1
Boot Integrity - M1046 (7da0387c-ba92-4553-b291-b636ee42b2eb)	Course of Action	Downgrade System Image - T1601.002 (fc74ba38-dc98-461f-8611-b3dbf9978e3d)	Attack Pattern	1
Subvert Trust Controls - T1553 (b83e166d-13d7-4b52-8677-dff90c548fd7)	Attack Pattern	Code Signing Policy Modification - T1553.006 (565275d5-fcc3-4b66-b4e7-928e4cac6b8c)	Attack Pattern	2
Modify System Image - T1601 (ae7f3575-0a5e-427e-991b-fe03ad44c754)	Attack Pattern	Patch System Image - T1601.001 (d245808a-7086-4310-984a-a84aaaa43f8f)	Attack Pattern	2
Bootkit - T1542.003 (1b7b1806-7746-41a1-a35d-e48dae25ddba)	Attack Pattern	Pre-OS Boot - T1542 (7f0ca133-88c4-40c6-a62f-b3083a7fbc2e)	Attack Pattern	2
TFTP Boot - T1542.005 (28abec6c-4443-4b03-8206-07f2e264a6b4)	Attack Pattern	Pre-OS Boot - T1542 (7f0ca133-88c4-40c6-a62f-b3083a7fbc2e)	Attack Pattern	2
Supply Chain Compromise - T1195 (3f18edba-28f4-4bb9-82c3-8aa60dcac5f7)	Attack Pattern	Compromise Hardware Supply Chain - T1195.003 (39131305-9282-45e4-ac3b-591d2d4fc3ef)	Attack Pattern	2
ROMMONkit - T1542.004 (a6557c75-798f-42e4-be70-ab4502e0a3bc)	Attack Pattern	Pre-OS Boot - T1542 (7f0ca133-88c4-40c6-a62f-b3083a7fbc2e)	Attack Pattern	2
System Firmware - T1542.001 (16ab6452-c3c1-497c-a47d-206018ca1ada)	Attack Pattern	Pre-OS Boot - T1542 (7f0ca133-88c4-40c6-a62f-b3083a7fbc2e)	Attack Pattern	2
Modify System Image - T1601 (ae7f3575-0a5e-427e-991b-fe03ad44c754)	Attack Pattern	Downgrade System Image - T1601.002 (fc74ba38-dc98-461f-8611-b3dbf9978e3d)	Attack Pattern	2