EXPANDED

seantmalone

us-16-Malone-Using-an-Expanded-Cyber-Kill-Chain-Model-to-Increase-Attack-Resiliency

LEGACY CYBER KILL CHAIN MODEL

“Perimeter Breach Kill Chain”

Reconnaissance

Weaponization

Delivery

Exploitation

Installation

Command & Control (C2)

Actions on Objectives

• Harvesting email addresses, conference

information, etc.

• Coupling exploit with backdoor into

deliverable payload

• Delivering weaponized bundle to the victim

via email, web, USB, etc.

• Exploiting a vulnerability to execute code

on victim’s system

• Installing malware on the asset

• Command channel for remote

manipulation of victim

• With “Hands on Keyboard” access,

intruders accomplish their original goal

GAME

OVER ?

6

Similar magazines