T1041

Exfiltration Over C2 Channel

TA0010Exfiltration

Adversaries may steal data by exfiltrating it over an existing command and control channel. Stolen data is encoded into the normal communications channel using the same protocol as command and control communications.

Platforms4

ESXiLinuxmacOSWindows

CVEs mapped to this technique

No CVE mappings yet

ATT&CK ↔ CVE mappings come from CTID's open dataset, which currently covers only a fraction of all techniques. Commercial threat-intel feeds would expand this.