期刊名称:Lecture Notes in Engineering and Computer Science
印刷版ISSN:2078-0958
电子版ISSN:2078-0966
出版年度:2018
卷号:2233&2234
页码:219-224
出版社:Newswood and International Association of Engineers
摘要:Advanced persistent threats (APTs) is increasingly
becoming a major problem in government and organizational
computer networks. The next decade is likely to witness a
considerable rise to attack on private and commercial
networks unless this problem is curbed. To resolve these
threats, there is a need for a countermeasure for preventing
and handling APTs on operating system such as windows.
Therefore, this paper seeks to address this issue using MITRE,
Adversary Tactics Techniques, and common Knowledge
Matrix by applying Login Scripts technique. In this context, we
demonstrate how APT can gain access and control an entire
infrastructure. In addition, we use setoolkit social engineering
in Kali Linux distribution to create the payload. Consequently,
this paper sheds new light on how organization build a lot of
security devices inside their infrastructure, but unfortunately,
forget two important things. Firstly, the leniency in creating
and raising security awareness, and secondly leniency
designing, implementing, and updating of information security
policy. These two loopholes are enough to cause an attack on
any organization. In conclusion, we present a novel method on
how these attacks can be minimized.
关键词:Adversary; Hacking; ATT&CK; APT;;
Exploit; gain Access.
