- Overview of TDIR for Public Cloud
- Supported Cloud Environments and Log Sources
- Types of Threat Detection Enabled by TDIR for Public Cloud
- Prepare to Use TDIR for Public Cloud
- View Cloud Content Activity
PrevNext
Google Cloud Platform – MITRE ATT&CK Coverage by Use Case
Use Case | TTP Number | TTP Name |
|---|---|---|
Abnormal Authentication & Access | TA0007 T1078.004 T1535 | Discovery Valid Accounts: Cloud Accounts Unused/Unsupported Cloud Regions |
Privilege Escalation | TA0004 TA0007 T1530 | Privilege Escalation Discovery Data from Cloud Storage Object |
Cloud Data Protection | TA0004 TA0009 T1074 T1113 T1530 T1580 | Privilege Escalation Collection Data Staged Screen Capture Data from Cloud Storage Object Cloud Infrastructure Discovery |
Malware | T1037 T1204.002 T1204.003 | Boot or Logon Initialization Scripts User Execution: Malicious File User Execution: Malicious Image |
Account Manipulation | T1136.003 | Create Account |
Cryptomining | T1074 T1496 | Data Staged Resource Hijacking |