← Back to Explore
T1601.001
Patch System Image
Adversaries may modify the operating system of a network device to introduce new capabilities or weaken existing defenses.(Citation: Killing the myth of Cisco IOS rootkits) (Citation: Killing IOS diversity myth) (Citation: Cisco IOS Shellcode) (Citation: Cisco IOS Forensics Developments) (Citation: Juniper Netscreen of the Dead) Some network devices are built with a monolithic architecture, where the entire operating system and most of the functionality of the device is contained within a single...
Network Devices
2
Detections
2
Sources
0
Threat Actors
BY SOURCE
1elastic1splunk_escu
PROCEDURES (2)
Script Execution Monitoring1 detections
Auto-extracted: 1 detections for script execution monitoring
Kernel Monitoring1 detections
Auto-extracted: 1 detections for kernel monitoring