Skip to content

Hide Navigation Hide TOC

Firewall - DS0018 (f2f4f4bd-3455-400f-b2ee-104004df0f5b)

A network security system, running locally on an endpoint or remotely as a service (ex: cloud environment), that monitors and controls incoming/outgoing network traffic based on predefined rules(Citation: AWS Sec Groups VPC)

Cluster A Galaxy A Cluster B Galaxy B Level
Firewall Disable (c97d0171-f6e0-4415-85ff-4082fdb8c72a) mitre-data-component Firewall - DS0018 (f2f4f4bd-3455-400f-b2ee-104004df0f5b) mitre-data-source 1
Firewall Enumeration (bf91faa8-0049-4870-810a-4df55e0b77ee) mitre-data-component Firewall - DS0018 (f2f4f4bd-3455-400f-b2ee-104004df0f5b) mitre-data-source 1
Firewall Rule Modification (d2ff4b56-8351-4ed8-b0fb-d8605366005f) mitre-data-component Firewall - DS0018 (f2f4f4bd-3455-400f-b2ee-104004df0f5b) mitre-data-source 1
Firewall - DS0018 (f2f4f4bd-3455-400f-b2ee-104004df0f5b) mitre-data-source Firewall Metadata (746f095a-f84c-4ccc-90a5-c7caa5c100a2) mitre-data-component 1
Disable or Modify System Firewall - T1562.004 (5372c5fe-f424-4def-bcd5-d3a8e770f07b) Attack Pattern Firewall Disable (c97d0171-f6e0-4415-85ff-4082fdb8c72a) mitre-data-component 2
Firewall Disable (c97d0171-f6e0-4415-85ff-4082fdb8c72a) mitre-data-component Disable or Modify Cloud Firewall - T1562.007 (77532a55-c283-4cd2-bc5d-2d0b65e9d88c) Attack Pattern 2
Firewall Disable (c97d0171-f6e0-4415-85ff-4082fdb8c72a) mitre-data-component Impair Defenses - T1562 (3d333250-30e4-4a82-9edc-756c68afc529) Attack Pattern 2
Software Discovery - T1518 (e3b6daca-e963-4a69-aee6-ed4fd653ad58) Attack Pattern Firewall Enumeration (bf91faa8-0049-4870-810a-4df55e0b77ee) mitre-data-component 2
Firewall Enumeration (bf91faa8-0049-4870-810a-4df55e0b77ee) mitre-data-component Security Software Discovery - T1518.001 (cba37adb-d6fb-4610-b069-dd04c0643384) Attack Pattern 2
Disable or Modify System Firewall - T1562.004 (5372c5fe-f424-4def-bcd5-d3a8e770f07b) Attack Pattern Firewall Rule Modification (d2ff4b56-8351-4ed8-b0fb-d8605366005f) mitre-data-component 2
Firewall Rule Modification (d2ff4b56-8351-4ed8-b0fb-d8605366005f) mitre-data-component Disable or Modify Cloud Firewall - T1562.007 (77532a55-c283-4cd2-bc5d-2d0b65e9d88c) Attack Pattern 2
Clear Network Connection History and Configurations - T1070.007 (3975dbb5-0e1e-4f5b-bae1-cf2ab84b46dc) Attack Pattern Firewall Rule Modification (d2ff4b56-8351-4ed8-b0fb-d8605366005f) mitre-data-component 2
Indicator Removal - T1070 (799ace7f-e227-4411-baa0-8868704f2a69) Attack Pattern Firewall Rule Modification (d2ff4b56-8351-4ed8-b0fb-d8605366005f) mitre-data-component 2
Firewall Rule Modification (d2ff4b56-8351-4ed8-b0fb-d8605366005f) mitre-data-component Impair Defenses - T1562 (3d333250-30e4-4a82-9edc-756c68afc529) Attack Pattern 2
Software Discovery - T1518 (e3b6daca-e963-4a69-aee6-ed4fd653ad58) Attack Pattern Firewall Metadata (746f095a-f84c-4ccc-90a5-c7caa5c100a2) mitre-data-component 2
Security Software Discovery - T1518.001 (cba37adb-d6fb-4610-b069-dd04c0643384) Attack Pattern Firewall Metadata (746f095a-f84c-4ccc-90a5-c7caa5c100a2) mitre-data-component 2
Disable or Modify System Firewall - T1562.004 (5372c5fe-f424-4def-bcd5-d3a8e770f07b) Attack Pattern Impair Defenses - T1562 (3d333250-30e4-4a82-9edc-756c68afc529) Attack Pattern 3
Disable or Modify Cloud Firewall - T1562.007 (77532a55-c283-4cd2-bc5d-2d0b65e9d88c) Attack Pattern Impair Defenses - T1562 (3d333250-30e4-4a82-9edc-756c68afc529) Attack Pattern 3
Software Discovery - T1518 (e3b6daca-e963-4a69-aee6-ed4fd653ad58) Attack Pattern Security Software Discovery - T1518.001 (cba37adb-d6fb-4610-b069-dd04c0643384) Attack Pattern 3
Clear Network Connection History and Configurations - T1070.007 (3975dbb5-0e1e-4f5b-bae1-cf2ab84b46dc) Attack Pattern Indicator Removal - T1070 (799ace7f-e227-4411-baa0-8868704f2a69) Attack Pattern 3