Health Checks are used to inform those responsible for maintaining a system that there is a problem, but if that information gets into the hands of a malicious actor, it can be used to target already problematic systems and mask malicious activity.
Management / Monitoring / Threats / DEV
Health Checks Used to Identify Attack Targets
CCC.Monitor.TH02
Related Capabilities
| ID | Title | Description |
|---|---|---|
| CCC.Monitoring.CP04 | CCC.Monitoring.CP04 |
Related Controls
| ID | Title | Description |
|---|---|---|
| CCC.Monitor.CN04 | Restrict access to Monitoring Dashboards | Control access to Monitoring Dashboards and reports to ensure they don't highlight an attack path. |
External Mappings
| Framework | ID | Remarks |
|---|---|---|
| MITRE-ATT&CK | T1590 | Gather Victim Network Information |