Obtain Capabilities: Tool

Cybrary
Course
COMING SOON

While you may be prepared to detect the use of malware on your system, what if an adversary uses a legitimate software tool for a nefarious purpose? Adversaries may buy or steal software and use it in unexpected ways. Learn how adversaries leverage this technique so you can defend your organization.

Time
50 minutes
Difficulty
Intermediate
CEU/CPE
1
Share
NEED TO TRAIN YOUR TEAM? LEARN MORE
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Course Description

The tactic of Resource Development is one where adversaries will use the means available to them to support their objectives. If an existing software tool will aid in their operations, they may buy or steal it (or the license for it) to use it in nefarious ways. Threat actors like FIN10 have been known to obtain tools, such as publicly-available software, to establish persistence in a victim’s network before pursuing the rest of their desired attack plan.

It's important to learn how to detect this technique, as it is tricky to mitigate it.

Get the hands-on skills you need to detect and mitigate this attack in Cybrary's MITRE ATT&CK Framework courses aligned to the tactics and techniques used by the financially motivated threat group FIN10. Prevent adversaries from accomplishing the tactic of Resource Development in your environment today.

Instructed By
Matthew Mullins
Matthew Mullins
Technical Manager, Red Team
Instructor
Owen Dubiel
Owen Dubiel
Security Practitioner
Instructor
Provider
Cybrary
Certificate of Completion
Certificate Of Completion

Complete this entire course to earn a Obtain Capabilities: Tool Certificate of Completion