We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent ff5b252 commit 3fc34b2Copy full SHA for 3fc34b2
datasets/attack_techniques/T1003.003/credential-dumping-via-symlink/credential-dumping-via-symlink.yml
@@ -0,0 +1,14 @@
1
+author: PB
2
+id: 2b6382f8-0ff0-4d11-b269-8b5af4da5c6a
3
+date: '2025-11-12'
4
+description: Attack data for detection Credential Dumping via Symlink to Shadow Copy
5
+ New
6
+environment: attack_range
7
+directory: credential-dumping-via-symlink
8
+mitre_technique:
9
+- T1003.003
10
+datasets:
11
+- name: data
12
+ path: datasets/attack_techniques/T1003.003/credential-dumping-via-symlink/data.log
13
+ sourcetype: XmlWinEventLog
14
+ source: XmlWinEventLog:Microsoft-Windows-Sysmon/Operational
0 commit comments