Detection rules › Sigma
A New Trust Was Created To A Domain
Addition of domains is seldom and should be verified for legitimacy.
MITRE ATT&CK coverage
| Tactic | Techniques |
|---|---|
| Persistence | T1098 Account Manipulation |
| Privilege Escalation | T1098 Account Manipulation |
Event coverage
| Provider | Event ID | Title |
|---|---|---|
| Security-Auditing | 4706 | A new trust was created to a domain. |