Deceptive User Profile Attributes

Engage Goals: EGO0002 Affect, EGO0003 Elicit

Engage Approach:

Engage Actions: EAC0012 Personas, EAC0015 Information Manipulation

Name of Element: Deceptive User Profile Attributes

Description of Element:

Goal: Misdirect attackers and gather information about their activities by manipulating user profile attributes.

Approach: Subtly altering user profile information to create misleading paths or trigger alerts.

Modify user profile attributes, such as job titles, department names, or contact information, to create misleading trails or to trigger alerts when accessed by unauthorized users.

Technical Context:

This element requires integration with the identity management system. It can be implemented by modifying user profile databases or by deploying scripts that dynamically alter profile information. This aligns with the MITRE ATT&CK technique T1087.002 (Account Discovery: Domain Account).

Other:

This element can be combined with deceptive access controls to create a more convincing illusion. For example, deceptive user profiles can be paired with fake access permissions to make them appear more attractive to attackers.

Leave a Reply Cancel reply

ORION Detlab: Forging Resilient Detections in the HEFAISTOS Ecosystem

The Maieutic Engine: Birth of a New Detection Engineering Paradigm

The Forge, The Guide, and The Hunter: Unifying Detection Engineering with the Mythological Triad of HEFAISTOS, KEDALION, and ORION

Dendrite: Bridging the Synaptic Gap Between External Intelligence and Internal Defense