← Back to Explore
T1606
Forge Web Credentials
Adversaries may forge credential materials that can be used to gain access to web applications or Internet services. Web applications and services (hosted in cloud SaaS environments or on-premise servers) often use session cookies, tokens, or other materials to authenticate and authorize user access. Adversaries may generate these credential materials in order to gain access to web resources. This differs from [Steal Web Session Cookie](https://attack.mitre.org/techniques/T1539), [Steal Applica...
SaaSWindowsmacOSLinuxIaaSOffice SuiteIdentity Provider
3
Detections
2
Sources
0
Threat Actors
BY SOURCE
2elastic1sigma
PROCEDURES (3)
Authentication Monitoring1 detections
Auto-extracted: 1 detections for authentication monitoring
Token1 detections
Auto-extracted: 1 detections for token
Token1 detections
Auto-extracted: 1 detections for token