Lateral Movement

Name Technique Tactic
Active Directory Kerberos Attacks Password Spraying, Brute Force Credential Access
Insider Threat Password Spraying, Brute Force Credential Access
Living Off The Land Trusted Developer Utilities Proxy Execution, MSBuild Defense Evasion
Snake Keylogger Malicious File, User Execution Execution
Snake Malware Kernel Modules and Extensions, Service Execution Persistence
Sneaky Active Directory Persistence Tricks Security Support Provider, Boot or Logon Autostart Execution Persistence