-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathAzureDDOS.yaml
52 lines (51 loc) · 1.65 KB
/
AzureDDOS.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
version: 1
ATT&CK version: 8.2
creation date: 03/04/2021
name: Azure DDOS Protection Standard
contact: [email protected]
organization: Center for Threat Informed Defense (CTID)
platform: Azure
tags:
- Azure Security Center Recommendation
- Network
description: >-
Azure DDoS Protection Standard, combined with application design best practices, provides enhanced
DDoS mitigation features to defend against DDoS attacks.
It is automatically tuned to help protect your specific Azure resources in a virtual network.
techniques:
- id: T1498
name: Network Denial of Service
technique-scores:
- category: Protect
value: Significant
comments: Designed to address multiple DDOS techniques including volumetric attacks.
sub-techniques-scores:
- sub-techniques:
- id: T1498.002
name: Reflection Amplification
- id: T1498.001
name: Direct Network Flood
scores:
- category: Protect
value: Significant
- id: T1499
name: Endpoint Denial of Service
technique-scores:
- category: Protect
value: Significant
comments: >-
Protects against volumetric and protocol DOS, though not application.
sub-techniques-scores:
- sub-techniques:
- id: T1499.003
name: Application Exhaustion Flood
- id: T1499.002
name: Service Exhaustion Flood
- id: T1499.001
name: OS Exhaustion Flood
scores:
- category: Protect
value: Significant
references:
- >-
https://docs.microsoft.com/en-us/azure/ddos-protection/ddos-protection-overview