Detections
Analytics
Remote System Discovery
Description
Adversaries may attempt to get a listing of other systems by IP address, hostname, or other logical identifier on a network that may be used for subsequent Lateral Movement or Discovery techniques. Functionality could exist within adversary tools to enable this, but utilities available on the operating system or vendor software could also be used.
Products, Sensors, and Dependencies
| Product | Dependencies | Data source | Access required | Protocol | Data Collected | Notes |
|---|---|---|---|---|---|---|
| Tenable OT Security | OT backplane data | Depends on the vendor | Tenable OT Backplane Mapping |
Attack Path Technique Details
Framework: MITRE ATT&CK
Family: Discovery
Technique: Remote System Discovery
Sub-Technique: Remote System Discovery
Platform: OT
Products Required: Tenable OT Security
Tenable Release Date: 2024 Q2