[Intel]: https://sysdig.com/blog/containers-read-only-fileless-malware/ #415
Assignees
Labels
deprecated:template
missing:tag:JavaScript
missing:tag:Non-persistentStorage
missing:tag:T1005
missing:tag:T1021.002
missing:tag:T1048
missing:tag:T1053.003
missing:tag:T1053.007
missing:tag:T1057
missing:tag:T1070.004
missing:tag:T1070.006
missing:tag:T1071.001
missing:tag:T1083
missing:tag:T1205
missing:tag:T1491
missing:tag:T1546.004
missing:tag:T1567
missing:tag:T1573
missing:tag:T1609
missing:tag:T1610
Comments
timb-machine
added
missing:tag:Non-persistentStorage
missing:tag:T1005
missing:tag:T1021.002
missing:tag:T1048
missing:tag:T1053.003
missing:tag:T1053.007
missing:tag:T1057
missing:tag:T1070.004
missing:tag:T1070.006
missing:tag:T1071.001
missing:tag:T1083
missing:tag:T1205
missing:tag:T1491
missing:tag:T1546.004
missing:tag:T1567
missing:tag:T1573
missing:tag:T1609
missing:tag:T1610
missing:tag:JavaScript
and removed
confirmed
labels
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Area
Offensive techniques
Parent threat
Persistence, Defense Evasion
Finding
https://sysdig.com/blog/containers-read-only-fileless-malware/
Industry reference
attack:T1202:Indirect Command Execution
attack:T1620:Reflective Code Loading
uses:Non-persistentStorage
uses:k8s
Malware reference
No response
Actor reference
No response
Component
Linux
Scenario
Cloud hosted services
Scenario variation
Device application sandboxing
The text was updated successfully, but these errors were encountered: