Earth Estries

T1003 - OS Credential Dumping T1005 - Data from Local System T1014 - Rootkit T1016 - System Network Configuration Discovery T1021 - Remote Services T1021.002 - SMB/Windows Admin Shares T1021.004 T1027 - Obfuscated Files or Information T1036.005 - Match Legitimate Name or Location T1040 T1041 - Exfiltration Over C T1048 T1048.003 T1053 - Scheduled Task/Job T1055 - Process Injection T1057 - Process Discovery T1059 - Command and Scripting Interpreter T1059.001 - PowerShell T1059.002 - AppleScript T1059.003 - Windows Command Shell T1059.004 - Unix Shell T1059.007 - JavaScript T1068 - Exploitation for Privilege Escalation T1070 T1070.002 T1070.004 - File Deletion T1071 - Application Layer Protocol T1071.001 - Web Protocols T1071.002 - File Transfer Protocols T1078 - Valid Accounts T1082 - System Information Discovery T1083 - File and Directory Discovery T1090 - Proxy T1098 T1098.004 T1102 - Web Service T1102.002 - Bidirectional Communication T1105 - Ingress Tool Transfer T1110 T1110.002 T1112 - Modify Registry T1132.001 - Standard Encoding T1133 - External Remote Services T1136 T1140 - Deobfuscate/Decode Files or Information T1190 - Exploit Public-Facing Application T1199 - Trusted Relationship T1203 - Exploitation for Client Execution T1204.002 - Malicious File T1219 T1222.002 - Linux and Mac File and Directory Permissions Modification T1505.003 - Web Shell T1530 - Data from Cloud Storage Object T1543 - Create or Modify System Process T1543.003 - Windows Service T1547.001 - Registry Run Keys / Startup Folder T1553.002 - Code Signing T1553.006 - Code Signing Policy Modification T1560 - Archive Collected Data T1562 - Impair Defenses T1562.004 T1566 - Phishing T1572 T1573.001 - Symmetric Cryptography T1573.002 - Asymmetric Cryptography T1574 - Hijack Execution Flow T1574.001 - DLL Search Order Hijacking T1574.002 - DLL Side-Loading T1587 T1587.001 T1588 T1588.002 T1590 T1590.004 T1602 T1602.002