References

Type
Url
Description

technique

https://tools.cisco.com/security/center/resources/integrity_assurance.html#23

Cisco. (n.d.). Cisco IOS Software Integrity Assurance - Command History. Retrieved October 21, 2020.


technique

https://tools.cisco.com/security/center/resources/integrity_assurance.html#7

Cisco. (n.d.). Cisco IOS Software Integrity Assurance - Cisco IOS Image File Verification. Retrieved October 19, 2020.


technique

https://tools.cisco.com/security/center/resources/integrity_assurance.html#13

Cisco. (n.d.). Cisco IOS Software Integrity Assurance - Cisco IOS Run-Time Memory Integrity Verification. Retrieved October 19, 2020.


technique

https://tools.cisco.com/security/center/resources/integrity_assurance.html#35

Cisco. (n.d.). Cisco IOS Software Integrity Assurance - Secure Boot. Retrieved October 19, 2020.


technique

https://attack.mitre.org/techniques/T1542/005


technique

https://docs.microsoft.com/windows/security/threat-protection/auditing/event-4697

Miroshnikov, A. & Hall, J. (2017, April 18). 4697(S): A service was installed in the system. Retrieved August 7, 2018.


technique

https://docs.microsoft.com/windows/security/threat-protection/use-windows-event-forwarding-to-assist

Hardy, T. & Hall, J. (2018, February 15). Use Windows Event Forwarding to help with intrusion detection. Retrieved August 7, 2018.


technique

https://technet.microsoft.com/en-us/sysinternals/bb963902

Russinovich, M. (2016, January 4). Autoruns for Windows v13.51. Retrieved June 6, 2016.


technique

https://technet.microsoft.com/en-us/library/cc772408.aspx

Microsoft. (n.d.). Services. Retrieved June 7, 2016.


technique

https://capec.mitre.org/data/definitions/478.html