test_scratch
/
cti-ATT-CK-v13.1
/ics-attack
/relationship
/relationship--00e6c22b-9275-4039-b6d4-2ac0680325d6.json
{ | |
"type": "bundle", | |
"id": "bundle--ec48195d-870a-4719-99ef-03c1769e0f2d", | |
"spec_version": "2.0", | |
"objects": [ | |
{ | |
"object_marking_refs": [ | |
"marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168" | |
], | |
"type": "relationship", | |
"id": "relationship--00e6c22b-9275-4039-b6d4-2ac0680325d6", | |
"created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5", | |
"created": "2020-09-21T17:59:24.739Z", | |
"modified": "2022-05-06T17:47:24.104Z", | |
"relationship_type": "mitigates", | |
"description": "Use host-based allowlists to prevent devices from accepting connections from unauthorized systems. For example, allowlists can be used to ensure devices can only connect with master stations or known management/engineering workstations. (Citation: Department of Homeland Security September 2016)\n", | |
"source_ref": "course-of-action--aadac250-bcdc-44e3-a4ae-f52bd0a7a16a", | |
"target_ref": "attack-pattern--25dfc8ad-bd73-4dfd-84a9-3c3d383f76e9", | |
"external_references": [ | |
{ | |
"source_name": "Department of Homeland Security September 2016", | |
"description": "Department of Homeland Security 2016, September Retrieved. 2020/09/25 ", | |
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" | |
} | |
], | |
"x_mitre_attack_spec_version": "2.1.0", | |
"x_mitre_modified_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5", | |
"x_mitre_version": "1.0" | |
} | |
] | |
} |