Hybrid Identity

Description

Adversaries may patch, modify, or otherwise backdoor cloud authentication processes that are tied to on-premises user identities in order to bypass typical authentication mechanisms, access credentials, and enable persistent access to accounts.

Products, Sensors, and Dependencies

Product	Dependencies	Data source	Access required	Protocol	Data Collected	Notes

Attack Path Technique Details

Framework: MITRE ATT&CK

Family: Credential Access, Defense Evasion, Persistence

Technique: Modify Authentication Process

Products Required: (Tenable Identity Exposure and Tenable Vulnerability Management) or Tenable Identity Exposure

Detections

Analytics

Hybrid Identity

Description

Products, Sensors, and Dependencies

Attack Path Technique Details