{"id":6450,"date":"2022-08-25T13:58:00","date_gmt":"2022-08-25T05:58:00","guid":{"rendered":"https:\/\/www.cloudfall.cn\/?p=6450"},"modified":"2022-09-19T11:03:36","modified_gmt":"2022-09-19T03:03:36","slug":"attck%e4%b9%8b%e8%9b%ae%e5%8a%9b%e6%94%bb%e5%87%bb%ef%bc%9a%e5%af%86%e7%a0%81%e5%96%b7%e6%b4%92%e6%94%bb%e5%87%bb","status":"publish","type":"post","link":"https:\/\/www.cloudfall.cn\/en\/?p=6450","title":{"rendered":"ATT&amp;CK\u4e4b\u86ee\u529b\u653b\u51fb\uff1a\u5bc6\u7801\u55b7\u6d12\u653b\u51fb"},"content":{"rendered":"<section style=\"box-sizing: border-box; font-style: normal; font-weight: 400; text-align: justify; font-size: 16px;\">\n<section style=\"text-align: center; margin: 0.5em 0px; padding-left: 0.5em; padding-right: 0.5em; box-sizing: border-box;\">\u5b9a\u4e49\u4e0e\u624b\u6cd5&nbsp;<\/section>\n<p><span style=\"color: #808080;\">&nbsp; \u5bf9\u624b\u53ef\u4ee5\u5bf9\u8bb8\u591a\u4e0d\u540c\u7684\u5e10\u6237\u4f7f\u7528\u5355\u4e2a\u6216\u4e00\u4e2a\u5c0f\u7684\u5e38\u7528\u5bc6\u7801\u5217\u8868\uff0c\u4ee5\u8bd5\u56fe\u83b7\u5f97\u6709\u6548\u7684\u5e10\u6237\u51ed\u636e\u3002\u5bc6\u7801\u55b7\u6d12\u4f7f\u7528\u4e00\u4e2a\u5bc6\u7801(\u4f8b\u5982:&#8217;Password01&#8242;)\uff0c\u6216\u8005\u4e00\u4e2a\u5e38\u7528\u5bc6\u7801\u7684\u5c0f\u5217\u8868\uff0c\u8fd9\u4e9b\u5bc6\u7801\u4e0e\u57df\u7684\u590d\u6742\u5ea6\u7b56\u7565\u76f8\u5339\u914d\u3002<\/span><\/p>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><!--more--><\/p>\n<section style=\"box-sizing: border-box; font-style: normal; font-weight: 400; text-align: justify; font-size: 16px;\">\n<section style=\"transform: translate3d(1px, 0px, 0px); -webkit-transform: translate3d(1px, 0px, 0px); -moz-transform: translate3d(1px, 0px, 0px); -o-transform: translate3d(1px, 0px, 0px); margin: 10px 0% 0px; box-sizing: border-box;\">\n<section style=\"color: #bb331c; font-size: 17px; line-height: 1; letter-spacing: 2px; padding: 0px 21px; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">01&nbsp; \u5b9a\u4e49\u4e0e\u624b\u6cd5<\/strong><\/p>\n<p><span style=\"color: #808080;\">\u4f7f\u7528\u8be5\u5bc6\u7801\u5c1d\u8bd5\u767b\u5f55\u540c\u4e00\u7f51\u7edc\u4e0a\u7684\u8bb8\u591a\u4e0d\u540c\u5e10\u6237\uff0c\u4ee5\u907f\u514d\u5e10\u6237\u9501\u5b9a\u3002\u4e00\u822c\u8fd9\u79cd\u60c5\u51b5\u4f1a\u5728\u5bf9\u5355\u4e2a\u5e10\u6237\u4f7f\u7528\u8bb8\u591a\u5bc6\u7801\u8fdb\u884c\u86ee\u529b\u653b\u51fb\u65f6\u53d1\u751f\u3002\u4e00\u822c\u60c5\u51b5\u4e0b\uff0c\u5bc6\u7801\u55b7\u6d12\u4f1a\u4f7f\u7528\u5e38\u7528\u7aef\u53e3\u4e0a\u7684\u7ba1\u7406\u4e1a\u52a1\u3002\u4e00\u822c\u7684\u76ee\u6807\u670d\u52a1\u5305\u62ec:<\/span><\/p>\n<\/section>\n<\/section>\n<section style=\"font-size: 14px; color: #727272; padding: 0px 10px; box-sizing: border-box;\">\n<ul class=\"list-paddingleft-1\" style=\"list-style-type: disc; box-sizing: border-box;\">\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">SSH (22 \/ TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">Telnet (23 \/ TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">FTP (21 \/ TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">NetBIOS \/ SMB \/ Samba (139\/TCP &amp; 445\/TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">LDAP (389 \/ TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">Kerberos (88 \/ TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">RDP \/&nbsp;\u7ec8\u7aef\u670d\u52a1(3389\/TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">HTTP\/HTTP\u7ba1\u7406\u670d\u52a1(80\/TCP &amp; 443\/TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">MSSQL(1433 \/ TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">Oracle (1521 \/ TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">MySQL (3306 \/ TCP)<\/p>\n<\/li>\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">VNC (5900 \/ TCP)<\/p>\n<\/li>\n<\/ul>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">&nbsp; &nbsp; &nbsp; &nbsp; \u9664\u4e86\u7ba1\u7406\u670d\u52a1\uff0c\u5bf9\u624b\u53ef\u80fd\u201c\u9488\u5bf9\u4f7f\u7528\u8054\u5408\u8eab\u4efd\u9a8c\u8bc1\u534f\u8bae\u7684\u5355\u70b9\u767b\u5f55(SSO)\u548c\u57fa\u4e8e\u4e91\u7684\u5e94\u7528\u7a0b\u5e8f\u201d\uff0c\u4ee5\u53ca\u9762\u5411\u5916\u90e8\u7684\u7535\u5b50\u90ae\u4ef6\u5e94\u7528\u7a0b\u5e8f\uff0c\u4f8b\u5982Office 365\u3002<\/p>\n<p style=\"text-align: left; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">&nbsp; &nbsp; &nbsp; &nbsp;&nbsp;\u5728\u9ed8\u8ba4\u73af\u5883\u4e2d\uff0cLDAP\u548cKerberos\u8fde\u63a5\u5c1d\u8bd5\u4e0d\u592a\u4f1a\u89e6\u53d1SMB\u4e0a\u7684\u4e8b\u4ef6\uff0c\u4ece\u800c\u5bfc\u81f4Windows\u201c\u767b\u5f55\u5931\u8d25\u201d\u4e8b\u4ef6ID 4625\u3002<\/p>\n<\/section>\n<section style=\"text-align: center; margin: 0.5em 0px; padding-left: 0.5em; padding-right: 0.5em; box-sizing: border-box;\">\n<section style=\"box-sizing: border-box; width: 100%; box-shadow: #666666 3.2px 3.2px 8px; height: auto !important; display: inline-block; line-height: 0; border-color: white;\"><img decoding=\"async\" src=\"https:\/\/www.cloudfall.cn\/wp-content\/uploads\/2022\/08\/frc-36ad69460d212b87b92d43a9d17c492e.png\"><\/section>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"transform: translate3d(1px, 0px, 0px); -webkit-transform: translate3d(1px, 0px, 0px); -moz-transform: translate3d(1px, 0px, 0px); -o-transform: translate3d(1px, 0px, 0px); margin: 10px 0% 0px; box-sizing: border-box;\">\n<section style=\"color: #bb331c; font-size: 17px; line-height: 1; letter-spacing: 2px; padding: 0px 21px; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">02&nbsp; \u7a0b\u5e8f\u793a\u4f8b<\/strong><\/p>\n<\/section>\n<\/section>\n<section style=\"text-align: center; margin: 0.5em 0px; padding-left: 0.5em; padding-right: 0.5em; box-sizing: border-box;\">\n<section style=\"box-sizing: border-box; width: 100%; box-shadow: #666666 0.2em 0.2em 0.5em; height: auto !important; display: inline-block; line-height: 0; border-color: white;\"><img decoding=\"async\" src=\"https:\/\/www.cloudfall.cn\/wp-content\/uploads\/2022\/08\/frc-0ac9e1850100b6f02972b16b556b9efc.png\"><\/section>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"transform: translate3d(1px, 0px, 0px); -webkit-transform: translate3d(1px, 0px, 0px); -moz-transform: translate3d(1px, 0px, 0px); -o-transform: translate3d(1px, 0px, 0px); margin: 10px 0% 0px; box-sizing: border-box;\">\n<section style=\"color: #bb331c; font-size: 17px; line-height: 1; letter-spacing: 2px; padding: 0px 21px; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">03&nbsp; \u7f13\u89e3\u63aa\u65bd<\/strong><\/p>\n<\/section>\n<\/section>\n<section style=\"min-height: 40px; margin: 10px 0%; box-sizing: border-box;\">\n<section style=\"width: 100%; margin: 0px auto -10px; box-sizing: border-box;\">\n<table style=\"border-collapse: collapse; box-sizing: border-box; margin-bottom: 10px;\" width=\"100%\">\n<tbody style=\"box-sizing: border-box;\">\n<tr style=\"box-sizing: border-box;\">\n<td style=\"background-color: #ebbc8f; box-sizing: border-box; padding: 0px; border: 1px solid #ffffff;\" colspan=\"1\" rowspan=\"1\" width=\"20.0000%\">\n<section style=\"margin: 0px 0%; box-sizing: border-box;\">\n<section style=\"color: #ffffff; font-size: 15px; line-height: 1; box-sizing: border-box;\">\n<p style=\"text-align: center; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">\u540d\u79f0<\/strong><\/p>\n<\/section>\n<\/section>\n<\/td>\n<td style=\"background-color: #ebbc8f; box-sizing: border-box; padding: 0px; border: 1px solid #ffffff;\" colspan=\"1\" rowspan=\"1\" width=\"80.0000%\">\n<section style=\"color: #ffffff; font-size: 15px; line-height: 3; box-sizing: border-box;\">\n<p style=\"text-align: center; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">\u63cf\u8ff0<\/strong><\/p>\n<\/section>\n<\/td>\n<\/tr>\n<tr style=\"box-sizing: border-box;\">\n<td style=\"background-color: #eae6db; box-sizing: border-box; padding: 0px; border: 1px solid #ffffff;\" colspan=\"1\" rowspan=\"1\" width=\"20.0000%\">\n<section style=\"margin: 10px 0%; box-sizing: border-box;\">\n<section style=\"color: #727272; font-size: 14px; line-height: 1; text-align: center; letter-spacing: 0px; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">\u8d26\u6237\u4f7f<\/p>\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">\u7528\u653f\u7b56<\/p>\n<\/section>\n<\/section>\n<\/td>\n<td style=\"background-color: #eae6db; box-sizing: border-box; padding: 0px; border: 1px solid #ffffff;\" colspan=\"1\" rowspan=\"1\" width=\"80.0000%\">\n<section style=\"color: #727272; font-size: 14px; line-height: 1.2; text-align: left; box-sizing: border-box;\">\n<ul class=\"list-paddingleft-1\" style=\"list-style-type: disc; box-sizing: border-box;\">\n<li style=\"box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">\u8bbe\u7f6e\u4e00\u5b9a\u6b21\u6570\u7684\u767b\u5f55\u5931\u8d25\u9501\u5b9a\u7b56\u7565\uff0c\u9632\u6b62\u7528\u6237\u731c\u5bc6\u7801\u3002\u4f46\u8fc7\u4e8e\u4e25\u683c\u7684\u7b56\u7565\u53ef\u80fd\u4f1a\u5bfc\u81f4\u670d\u52a1\u6761\u4ef6\u88ab\u62d2\u7edd\uff0c\u5bfc\u81f4\u73af\u5883\u65e0\u6cd5\u4f7f\u7528\uff0c\u6240\u6709\u4f7f\u7528\u66b4\u529b\u7684\u5e10\u6237\u90fd\u4f1a\u88ab\u9501\u5b9a<\/p>\n<\/li>\n<\/ul>\n<\/section>\n<\/td>\n<\/tr>\n<tr style=\"box-sizing: border-box;\">\n<td style=\"background-color: #eae6db; box-sizing: border-box; padding: 0px; border: 1px solid #ffffff;\" colspan=\"1\" rowspan=\"1\" width=\"20.0000%\">\n<section style=\"margin: 10px 0%; box-sizing: border-box;\">\n<section style=\"color: #727272; font-size: 14px; line-height: 1; text-align: center; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">\u4f7f\u7528\u591a\u56e0<\/p>\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">\u7d20\u8eab\u4efd\u9a8c\u8bc1<\/p>\n<\/section>\n<\/section>\n<\/td>\n<td style=\"background-color: #eae6db; box-sizing: border-box; padding: 0px; border: 1px solid #ffffff;\" colspan=\"1\" rowspan=\"1\" width=\"80.0000%\">\n<section style=\"color: #727272; font-size: 14px; line-height: 1.2; text-align: left; box-sizing: border-box;\">\n<ul class=\"list-paddingleft-1\" style=\"list-style-type: disc; box-sizing: border-box;\">\n<li style=\"box-sizing: border-box;\">\u4f7f\u7528\u591a\u56e0\u7d20\u8eab\u4efd\u9a8c\u8bc1\u3002\u5728\u53ef\u80fd\u7684\u60c5\u51b5\u4e0b\uff0c\u5728\u9762\u5411\u5916\u90e8\u7684\u670d\u52a1\u4e0a\u542f\u7528\u591a\u56e0\u7d20\u8eab\u4efd\u9a8c\u8bc1<\/li>\n<\/ul>\n<\/section>\n<\/td>\n<\/tr>\n<tr style=\"box-sizing: border-box;\">\n<td style=\"background-color: #eae6db; box-sizing: border-box; padding: 0px; border: 1px solid #ffffff;\" colspan=\"1\" rowspan=\"1\" width=\"20.0000%\">\n<section style=\"margin: 10px 0%; box-sizing: border-box;\">\n<section style=\"color: #727272; font-size: 14px; line-height: 1; text-align: center; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">&nbsp;\u5bc6\u7801\u7b56\u7565<\/p>\n<\/section>\n<\/section>\n<\/td>\n<td style=\"background-color: #eae6db; box-sizing: border-box; padding: 0px; border: 1px solid #ffffff;\" colspan=\"1\" rowspan=\"1\" width=\"80.0000%\">\n<section style=\"color: #727272; font-size: 14px; line-height: 1.2; text-align: left; box-sizing: border-box;\">\n<ul class=\"list-paddingleft-1\" style=\"list-style-type: disc; box-sizing: border-box;\">\n<li style=\"box-sizing: border-box;\">\u521b\u5efa\u5bc6\u7801\u7b56\u7565\u65f6\u8bf7\u53c2\u8003NIST\u6307\u5357<\/li>\n<\/ul>\n<\/section>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/section>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"transform: translate3d(1px, 0px, 0px); -webkit-transform: translate3d(1px, 0px, 0px); -moz-transform: translate3d(1px, 0px, 0px); -o-transform: translate3d(1px, 0px, 0px); margin: 10px 0% 0px; box-sizing: border-box;\">\n<section style=\"color: #bb331c; font-size: 17px; line-height: 1; letter-spacing: 2px; padding: 0px 21px; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">04&nbsp; \u68c0\u6d4b\u65b9\u6cd5<\/strong><\/p>\n<\/section>\n<\/section>\n<section style=\"font-size: 14px; color: #727272; padding: 0px 10px; box-sizing: border-box;\">\n<p style=\"text-align: left; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">&nbsp; &nbsp; &nbsp; &nbsp;\u76d1\u63a7\u6709\u6548\u5e10\u6237\u7684\u7cfb\u7edf\u548c\u5e94\u7528\u7a0b\u5e8f\u767b\u5f55\u5931\u8d25\u7684\u8ba4\u8bc1\u65e5\u5fd7\u3002\u5177\u4f53\u6765\u8bf4\uff0c\u8981\u76d1\u89c6\u591a\u4e2a\u5e10\u6237\u4e4b\u95f4\u53ef\u80fd\u7531\u4e8e\u5bc6\u7801\u55b7\u6d12\u5c1d\u8bd5\u800c\u5bfc\u81f4\u591a\u6b21\u5931\u8d25\u7684\u8eab\u4efd\u9a8c\u8bc1\u5c1d\u8bd5\u3002<\/p>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"font-size: 12px; color: #a0a0a0; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">**\u53c2\u8003\u6765\u6e90\uff1aATT&amp;CK\uff0c\u80d6\u5934\u9c7c\u7f16\u8bd1\uff0c\u6b22\u8fce\u8f6c\u8f7d\uff0c\u8f6c\u8f7d\u8bf7\u6ce8\u660e\u51fa\u5904\uff0c\u975e\u5e38\u611f\u8c22~~<\/p>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"margin: 10px 0% 0px; text-align: left; justify-content: flex-start; display: flex; flex-flow: row nowrap; box-sizing: border-box;\">\n<section style=\"display: inline-block; width: auto; vertical-align: top; min-width: 10%; max-width: 100%; flex: 0 0 auto; height: auto; align-self: flex-start; box-sizing: border-box;\">\n<section style=\"margin: 0px 0%; box-sizing: border-box;\">\n<section style=\"color: #ca1d18; padding: 0px; letter-spacing: 1px; line-height: 1.4; text-align: justify; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\u5f80\u671f\u63a8\u8350<\/p>\n<\/section>\n<\/section>\n<\/section>\n<\/section>\n<section style=\"min-height: 40px; margin: 10px 0%; box-sizing: border-box;\">\n<section style=\"width: 100%; margin: 0px auto -10px; box-sizing: border-box;\">\n<table style=\"border-collapse: collapse; box-sizing: border-box; margin-bottom: 10px;\" width=\"100%\">\n<tbody style=\"box-sizing: border-box;\">\n<tr style=\"box-sizing: border-box;\">\n<td style=\"border-width: 0px; border-color: #3e3e3e #3e3e3e #ffffff; border-style: none; padding: 0px 0px 10px; box-sizing: border-box;\" colspan=\"1\" rowspan=\"1\" width=\"100.0000%\">\n<section style=\"min-height: 40px; margin: 0px 0%; box-sizing: border-box;\">\n<section style=\"width: 100%; margin: 0px auto -10px; box-sizing: border-box;\">\n<table style=\"border-collapse: collapse; box-sizing: border-box; margin-bottom: 10px;\" width=\"100%\">\n<tbody style=\"box-sizing: border-box;\">\n<tr style=\"box-sizing: border-box;\">\n<td style=\"background-position: 50% 50%; background-repeat: no-repeat; background-size: cover; background-attachment: scroll; vertical-align: bottom; background-image: url('https:\/\/mmbiz.qpic.cn\/mmbiz_jpg\/Ruqar2eicG1FAibNl2lH4mwNdyVQkF4qQcUDjRDnIdmogiamYeKbbzR7FVxGBuSGBI9O4y7eic3PwJibAdbju87Pw9A\/640?wx_fmt=jpeg'); box-sizing: border-box; padding: 0px; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"2\" width=\"30.0000%\">\n<section style=\"margin: 0px 0% 4px; box-sizing: border-box;\">\n<section style=\"text-align: right; padding: 0px 4px; letter-spacing: 0px; color: #ffffff; font-size: 32px; line-height: 1; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">01<\/strong><\/p>\n<\/section>\n<\/section>\n<\/td>\n<td style=\"padding: 0px 10px; background-color: #f9f9f9; box-sizing: border-box; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"1\" width=\"70.0000%\">\n<section style=\"margin: 10px 0% 0px; box-sizing: border-box;\">\n<section style=\"font-size: 14px; letter-spacing: 1px; line-height: 1.6; color: #8c8c8c; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><span style=\"color: #ca1d18; box-sizing: border-box;\">\u25cf&nbsp;<a href=\"http:\/\/mp.weixin.qq.com\/s?__biz=Mzg4NDA4NzM3Nw==&amp;mid=2247485172&amp;idx=1&amp;sn=d16dab34f6548a5ce020a4755890ac9e&amp;chksm=cfbcc9caf8cb40dc61ab466a8e5a6950a23043d6083b3357c57930e105bd0309fbfc9d13eeed&amp;scene=21#wechat_redirect\" target=\"_blank\" rel=\"noopener\" data-itemshowtype=\"0\" data-linktype=\"2\">ATT&amp;CK\u4e4b\u86ee\u529b\u653b\u51fb\uff1a\u5bc6\u7801\u7834\u89e3<\/a><\/span><\/p>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<tr style=\"box-sizing: border-box;\">\n<td style=\"padding: 0px 10px; background-color: #f9f9f9; box-sizing: border-box; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"1\" width=\"70.0000%\">\n<section style=\"margin: 10px 0%; box-sizing: border-box;\">\n<section style=\"font-size: 14px; letter-spacing: 1px; line-height: 1; color: #8c8c8c; padding: 0px; box-sizing: border-box;\">\n<p style=\"text-align: right; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><a href=\"http:\/\/mp.weixin.qq.com\/s?__biz=Mzg4NDA4NzM3Nw==&amp;mid=2247485172&amp;idx=1&amp;sn=d16dab34f6548a5ce020a4755890ac9e&amp;chksm=cfbcc9caf8cb40dc61ab466a8e5a6950a23043d6083b3357c57930e105bd0309fbfc9d13eeed&amp;scene=21#wechat_redirect\" target=\"_blank\" rel=\"noopener\" data-itemshowtype=\"0\" data-linktype=\"2\"><span style=\"font-size: 12px; color: #d0d0d0; box-sizing: border-box;\">\u25ba \u70b9\u51fb\u9605\u8bfb<\/span><\/a><\/p>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<tr style=\"box-sizing: border-box;\">\n<td style=\"border-width: 0px; border-color: #3e3e3e #3e3e3e #ffffff; border-style: none; padding: 0px 0px 10px; box-sizing: border-box;\" colspan=\"1\" rowspan=\"1\" width=\"100.0000%\">\n<section style=\"min-height: 40px; margin: 0px 0%; box-sizing: border-box;\">\n<section style=\"width: 100%; margin: 0px auto -10px; box-sizing: border-box;\">\n<table style=\"border-collapse: collapse; box-sizing: border-box; margin-bottom: 10px;\" width=\"100%\">\n<tbody style=\"box-sizing: border-box;\">\n<tr style=\"box-sizing: border-box;\">\n<td style=\"background-position: 50% 50%; background-repeat: no-repeat; background-size: cover; background-attachment: scroll; vertical-align: bottom; background-image: url('https:\/\/mmbiz.qpic.cn\/mmbiz_jpg\/Ruqar2eicG1FAibNl2lH4mwNdyVQkF4qQcNlK2u14F3C4iabQud2uDm4gWAtiaPPx6ySOyl4PeBwU3kV4M97iaFfficw\/640?wx_fmt=jpeg'); box-sizing: border-box; padding: 0px; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"2\" width=\"30.0000%\">\n<section style=\"margin: 0px 0% 4px; box-sizing: border-box;\">\n<section style=\"text-align: right; padding: 0px 4px; letter-spacing: 0px; color: #ffffff; font-size: 32px; line-height: 1; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">02<\/strong><\/p>\n<\/section>\n<\/section>\n<\/td>\n<td style=\"padding: 0px 10px; background-color: #f9f9f9; box-sizing: border-box; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"1\" width=\"70.0000%\">\n<section style=\"margin: 10px 0% 0px; box-sizing: border-box;\">\n<section style=\"font-size: 14px; letter-spacing: 1px; line-height: 1.6; color: #8c8c8c; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><span style=\"color: #ca1d18; box-sizing: border-box;\">\u25cf&nbsp;<a href=\"http:\/\/mp.weixin.qq.com\/s?__biz=Mzg4NDA4NzM3Nw==&amp;mid=2247485082&amp;idx=1&amp;sn=b1796a51989105849a383285b37fb4b4&amp;chksm=cfbcc9a4f8cb40b2c6f8b83955d4fe598f6204ee424719af426e36d2a11a47e71e97b3e50e48&amp;scene=21#wechat_redirect\" target=\"_blank\" rel=\"noopener\" data-itemshowtype=\"0\" data-linktype=\"2\">ATT&amp;CK\u4e4b\u86ee\u529b\u653b\u51fb\uff1a\u5bc6\u7801\u731c\u6d4b<\/a><\/span><\/p>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<tr style=\"box-sizing: border-box;\">\n<td style=\"padding: 0px 10px; background-color: #f9f9f9; box-sizing: border-box; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"1\" width=\"70.0000%\">\n<section style=\"margin: 10px 0%; box-sizing: border-box;\">\n<section style=\"font-size: 14px; letter-spacing: 1px; line-height: 1; color: #8c8c8c; padding: 0px; box-sizing: border-box;\">\n<p style=\"text-align: right; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><a href=\"http:\/\/mp.weixin.qq.com\/s?__biz=Mzg4NDA4NzM3Nw==&amp;mid=2247485082&amp;idx=1&amp;sn=b1796a51989105849a383285b37fb4b4&amp;chksm=cfbcc9a4f8cb40b2c6f8b83955d4fe598f6204ee424719af426e36d2a11a47e71e97b3e50e48&amp;scene=21#wechat_redirect\" target=\"_blank\" rel=\"noopener\" data-itemshowtype=\"0\" data-linktype=\"2\"><span style=\"font-size: 12px; color: #d0d0d0; box-sizing: border-box;\">\u25ba \u70b9\u51fb\u9605\u8bfb<\/span><\/a><\/p>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<tr style=\"box-sizing: border-box;\">\n<td style=\"border-width: 0px; border-color: #3e3e3e #3e3e3e #ffffff; border-style: none; padding: 0px 0px 10px; box-sizing: border-box;\" colspan=\"1\" rowspan=\"1\" width=\"100.0000%\">\n<section style=\"min-height: 40px; margin: 0px 0%; box-sizing: border-box;\">\n<section style=\"width: 100%; margin: 0px auto -10px; box-sizing: border-box;\">\n<table style=\"border-collapse: collapse; box-sizing: border-box; margin-bottom: 10px;\" width=\"100%\">\n<tbody style=\"box-sizing: border-box;\">\n<tr style=\"box-sizing: border-box;\">\n<td style=\"background-position: 50% 50%; background-repeat: no-repeat; background-size: cover; background-attachment: scroll; vertical-align: bottom; background-image: url('https:\/\/mmbiz.qpic.cn\/mmbiz_jpg\/Ruqar2eicG1FAibNl2lH4mwNdyVQkF4qQcRZZOmdUxrnqt4nhxx1fpiaXAEqTlFicHoJ4hn5tTbFJZqxCc7TjZm4jQ\/640?wx_fmt=jpeg'); box-sizing: border-box; padding: 0px; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"2\" width=\"30.0000%\">\n<section style=\"margin: 0px 0% 4px; box-sizing: border-box;\">\n<section style=\"text-align: right; padding: 0px 4px; letter-spacing: 0px; color: #ffffff; font-size: 32px; line-height: 1; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">03<\/strong><\/p>\n<\/section>\n<\/section>\n<\/td>\n<td style=\"padding: 0px 10px; background-color: #f9f9f9; box-sizing: border-box; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"1\" width=\"70.0000%\">\n<section style=\"margin: 10px 0% 0px; box-sizing: border-box;\">\n<section style=\"font-size: 14px; letter-spacing: 1px; line-height: 1.6; color: #8c8c8c; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><span style=\"color: #ca1d18; box-sizing: border-box;\">\u25cf&nbsp;<a href=\"http:\/\/mp.weixin.qq.com\/s?__biz=Mzg4NDA4NzM3Nw==&amp;mid=2247485045&amp;idx=1&amp;sn=e73824d6aa7ba5eb478c852bf6d80a2d&amp;chksm=cfbcc94bf8cb405d6cc1f8dfadf130bd034fc8f818ced009eedd356bbe2af8d21d797e1da6ae&amp;scene=21#wechat_redirect\" target=\"_blank\" rel=\"noopener\" data-itemshowtype=\"0\" data-linktype=\"2\">ATT&amp;CK\u4e4b\u86ee\u529b\u653b\u51fb<\/a><\/span><\/p>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<tr style=\"box-sizing: border-box;\">\n<td style=\"padding: 0px 10px; background-color: #f9f9f9; box-sizing: border-box; border: 1px none #3e3e3e;\" colspan=\"1\" rowspan=\"1\" width=\"70.0000%\">\n<section style=\"margin: 10px 0%; box-sizing: border-box;\">\n<section style=\"font-size: 14px; letter-spacing: 1px; line-height: 1; color: #8c8c8c; padding: 0px; box-sizing: border-box;\">\n<p style=\"text-align: right; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\"><a href=\"http:\/\/mp.weixin.qq.com\/s?__biz=Mzg4NDA4NzM3Nw==&amp;mid=2247485045&amp;idx=1&amp;sn=e73824d6aa7ba5eb478c852bf6d80a2d&amp;chksm=cfbcc94bf8cb405d6cc1f8dfadf130bd034fc8f818ced009eedd356bbe2af8d21d797e1da6ae&amp;scene=21#wechat_redirect\" target=\"_blank\" rel=\"noopener\" data-itemshowtype=\"0\" data-linktype=\"2\"><span style=\"font-size: 12px; color: #d0d0d0; box-sizing: border-box;\">\u25ba \u70b9\u51fb\u9605\u8bfb<\/span><\/a><\/p>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/section>\n<\/section>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/section>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"text-align: center; margin-top: 10px; margin-bottom: 10px; box-sizing: border-box;\">\n<section style=\"display: inline-block; vertical-align: middle; margin: 0px -1.2em; padding: 3px 1.5em; color: #443d3b; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">\u5173\u4e8e\u6211\u4eec<\/p>\n<\/section>\n<\/section>\n<section style=\"margin-top: 10px; margin-bottom: 10px; box-sizing: border-box;\">\n<section style=\"padding: 0px 0.5em; box-sizing: border-box;\">\n<section style=\"padding: 10px; box-sizing: border-box;\">\n<section style=\"text-align: left; color: #727272; font-size: 14px; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\"><span style=\"box-sizing: border-box;\">&nbsp; &nbsp; &nbsp; &nbsp; \u4e91\u7eb7\u79d1\u6280\u81ea\u6210\u7acb\u4ee5\u6765\uff0c\u5c06\u201c\u5b89\u5168\u8fd0\u8425\u4e2d\u5fc3\uff08SOC\uff09\u201d\u5206\u5c42\u5206\u89e3\uff0c\u4ee5\u66f4\u7075\u6d3b\u7684\u6a21\u5757\u5316\u65b9\u5f0f\u4ea4\u4ed8\u201c\u4e0b\u4e00\u4ee3\u5b89\u5168\u8fd0\u8425\u670d\u52a1\u201d\uff1b\u9ad8\u6548\u6574\u5408\u4eba\u3001\u6280\u672f\u548c\u6d41\u7a0b\uff0c\u57fa\u4e8e\u4e91\u539f\u751f\u7684\u5206\u6790\u5e73\u53f0InsightX\uff0c\u4e3a\u4e0d\u540c\u7684\u4f01\u4e1a\u5ba2\u6237\u63d0\u4f9b\u7b26\u5408\u73b0\u72b6\u548c\u4e2d\u8fdc\u671f\u53d1\u5c55\u7684\u5b89\u5168\u8fd0\u8425\u80fd\u529b\u3002\u540c\u65f6\uff0c\u4ee5\u5341\u5e74\u5b89\u5168\u7ba1\u7406\u7ecf\u9a8c\u4e3a\u4f9d\u6258\uff0c\u6211\u4eec\u7684\u5b89\u5168\u6258\u7ba1\u670d\u52a1\uff08MSS\uff09\u53ef\u4ee5\u4e3a\u4f01\u4e1a\u63d0\u4f9b7&#215;24\u5c0f\u65f6\u5168\u5929\u5019\u5b89\u5168\u4fdd\u969c\uff0c\u5168\u9762\u63d0\u9ad8\u4f01\u4e1a\u5b89\u5168\u62b5\u5fa1\u80fd\u529b\uff0c\u4e3a\u62b5\u6297\u5a01\u80c1\u5efa\u7acb\u53ef\u9760\u5c4f\u969c\u3002<\/span><\/p>\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\">&nbsp; &nbsp; &nbsp; &nbsp; \u4e91\u7eb7\u5e0c\u671b\u5728\u4e3a\u5ba2\u6237\u5efa\u7acb\u8fd0\u8425\u4f53\u7cfb\u7684\u540c\u65f6\uff0c\u7ed3\u5408\u81ea\u8eab\u5bf9\u4e8e\u5b89\u5168\u7684\u7406\u89e3\u548c\u77e5\u8bc6\uff0c\u534f\u540c\u5229\u7528\u5f00\u53d1\u80fd\u529b\u3001\u5f00\u53d1\u5e76\u8c03\u7528\u5404\u7c7b\u81ea\u52a8\u4ee5\u53ca\u534a\u81ea\u52a8\u5316\u5de5\u5177\uff0c\u4e3a\u5ba2\u6237\u63d0\u4f9b\u6700\u5207\u5408\u5b9e\u9645\u7684\u5b89\u5168\u8fd0\u8425\u670d\u52a1\uff0c\u6700\u7ec8\u5e2e\u52a9\u7528\u6237\u6e05\u6670\u5b9a\u4f4d\u5a01\u80c1\u3001\u964d\u4f4e\u98ce\u9669\uff0c\u63d0\u9ad8\u6574\u4f53\u5b89\u5168\u6c34\u5e73\u3002<\/p>\n<\/section>\n<\/section>\n<\/section>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"text-align: center; margin-top: 10px; margin-bottom: 10px; box-sizing: border-box;\">\n<section style=\"max-width: 100%; vertical-align: middle; display: inline-block; line-height: 0; box-shadow: #000000 0px 0px 0px; box-sizing: border-box;\"><img decoding=\"async\" src=\"https:\/\/www.cloudfall.cn\/wp-content\/uploads\/2022\/08\/frc-6714ff3af473046cdfa17ad308df1cb9.gif\"><\/section>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"text-align: center; margin: 10px 0%; justify-content: center; display: flex; flex-flow: row nowrap; box-sizing: border-box;\">\n<section style=\"display: inline-block; width: 80%; vertical-align: top; background-color: #eeeeee; box-shadow: #dcdddd 0px 0px 5px; align-self: flex-start; flex: 0 0 auto; box-sizing: border-box;\">\n<section style=\"text-align: justify; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<\/section>\n<section style=\"text-align: justify; font-size: 18px; color: #bb331c; box-sizing: border-box;\">\n<p style=\"text-align: center; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\u6bcf\u4e2a\u4f01\u4e1a\u90fd\u9700\u8981\u5b89\u5168\u8fd0\u8425<\/p>\n<\/section>\n<section style=\"text-align: justify; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<\/section>\n<section style=\"text-align: justify; box-sizing: border-box;\">\n<p style=\"text-align: center; white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\u4e91\u7eb7\u79d1\u6280<\/p>\n<\/section>\n<section style=\"text-align: justify; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<\/section>\n<section style=\"margin-top: 10px; margin-bottom: 10px; box-sizing: border-box;\">\n<section style=\"max-width: 100%; vertical-align: middle; display: inline-block; line-height: 0; box-shadow: #000000 0px 0px 0px; width: 10%; height: auto; box-sizing: border-box;\"><img decoding=\"async\" src=\"https:\/\/www.cloudfall.cn\/wp-content\/uploads\/2022\/08\/frc-7ab3257153cafb3d1a45c4cc7335c567.png\"><\/section>\n<\/section>\n<section style=\"text-align: justify; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<\/section>\n<section style=\"margin: 0px 0%; justify-content: center; display: flex; flex-flow: row nowrap; box-sizing: border-box;\">\n<section style=\"display: inline-block; width: 60%; vertical-align: top; background-color: #ffffff; border-radius: 10px; padding: 4px; box-shadow: #000000 0px 0px 0px; align-self: flex-start; flex: 0 0 auto; box-sizing: border-box; border: 0px none #3e3e3e;\">\n<section style=\"margin: 0px 0%; box-sizing: border-box;\">\n<section style=\"max-width: 100%; vertical-align: middle; display: inline-block; line-height: 0; box-sizing: border-box;\"><img decoding=\"async\" src=\"https:\/\/www.cloudfall.cn\/wp-content\/uploads\/2022\/08\/frc-226244d4fadf2f70de3de8fe09fef5f0.jpeg\"><\/section>\n<\/section>\n<\/section>\n<\/section>\n<section style=\"text-align: justify; box-sizing: border-box;\">\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<\/section>\n<\/section>\n<\/section>\n<p style=\"white-space: normal; margin: 0px; padding: 0px; box-sizing: border-box;\">\n<section style=\"margin-top: 10px; margin-bottom: 10px; text-align: right; box-sizing: border-box;\">\n<section style=\"display: inline-block; vertical-align: middle; box-sizing: border-box;\">\n<section style=\"display: inline-block; vertical-align: bottom; padding-left: 5px; padding-right: 5px; line-height: 1; margin-bottom: 2px; color: #bb331c; font-size: 14px; box-sizing: border-box;\">\n<p style=\"margin: 0px; padding: 0px; box-sizing: border-box;\"><span style=\"box-sizing: border-box;\">\u70b9\u51fb\u53f3\u4e0b\u89d2\uff0c\u8ba9\u6211\u77e5\u9053\u4f60<span style=\"padding: 1px 4px; margin: 0px 2px; border-radius: 3px; letter-spacing: 2px; background-color: #f17373; color: #ffffff; box-sizing: border-box;\"><strong style=\"box-sizing: border-box;\">\u5728\u770b<\/strong><\/span>\u54df~<\/span><\/p>\n<\/section>\n<section style=\"max-width: 100%; display: inline-block; vertical-align: bottom; line-height: 0; width: 5%; height: auto; box-sizing: border-box;\"><img decoding=\"async\" src=\"https:\/\/www.cloudfall.cn\/wp-content\/uploads\/2022\/08\/frc-64e841e1298b66ffc400ff687b4ee014.png\"><\/section>\n<\/section>\n<\/section>\n<\/section>\n","protected":false},"excerpt":{"rendered":"<p>\u5b9a\u4e49\u4e0e\u624b\u6cd5&nbsp; &nbsp; \u5bf9\u624b\u53ef\u4ee5\u5bf9\u8bb8\u591a\u4e0d\u540c\u7684\u5e10\u6237\u4f7f\u7528\u5355\u4e2a\u6216\u4e00\u4e2a\u5c0f\u7684\u5e38\u7528\u5bc6\u7801\u5217\u8868\uff0c\u4ee5\u8bd5\u56fe\u83b7\u5f97\u6709\u6548\u7684 [&hellip;]<\/p>\n","protected":false},"author":7,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[29],"tags":[],"_links":{"self":[{"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=\/wp\/v2\/posts\/6450"}],"collection":[{"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6450"}],"version-history":[{"count":4,"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=\/wp\/v2\/posts\/6450\/revisions"}],"predecessor-version":[{"id":6494,"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=\/wp\/v2\/posts\/6450\/revisions\/6494"}],"wp:attachment":[{"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6450"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6450"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cloudfall.cn\/en\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6450"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}