TA0001
Initial Access
Description
The adversary is trying to get into your network. Initial Access consists of techniques that use various entry vectors to gain their initial foothold within a network.
Techniques used to gain a foothold include targeted spearphishing and exploiting weaknesses on public-facing web servers. Footholds gained through initial access may allow for continued access, like valid accounts and use of external remote services, or may be limited-use due to changing passwords.
Techniques (11)
T1078
Valid Accounts
T1091
Replication Through Removable Media
T1133
External Remote Services
T1189
Drive-by Compromise
T1190
Exploit Public-Facing Application
T1195
Supply Chain Compromise
T1199
Trusted Relationship
T1200
Hardware Additions
T1566
Phishing
T1659
Content Injection
T1669
Wi-Fi Networks