7 Feb, 2024
Joint Guidance: Identifying and Mitigating Living Off the Land Techniques
United States. Cybersecurity & Infrastructure Security Agency
From the document: "This guide [...] provides information on common living off the land (LOTL) techniques and common gaps in cyber defense capabilities. [...] The joint guide for network defenders focuses on how to mitigate identified gaps and to detect and hunt for LOTL activity. The information in this joint guide is derived from a previously published joint advisory [hyperlink]; incident response engagements undertaken by several of the authoring agencies; red team assessments by several of the authoring agencies using LOTL for undetected, persistent access; and collaborative efforts with industry. The authoring agencies have observed cyber threat actors, including the People's Republic of China (PRC) and Russian Federation state-sponsored actors, leveraging LOTL techniques to compromise and maintain persistent access to critical infrastructure organizations. The authoring agencies are releasing this joint guide for network defenders (including threat hunters) as the malicious use of LOTL techniques is increasingly emerging in the broader cyber threat environment."
-
URL
-
Authors
-
Publisher
-
Date7 Feb, 2024
-
CopyrightPublic Domain
-
Retrieved FromCybersecurity and Infrastructure Security Agency: www.cisa.gov/
-
Formatpdf
-
Media Typeapplication/pdf
-
Subjects
Details