Tails is an operating system launched from a USB stick or a DVD that aim to leaves no traces when the computer is shut down after use and automatically routes your internet traffic through Tor. Our submission system works hard to preserve your anonymity, but we recommend you also take some of your own precautions.
Please review these basic guidelines. If you have a very large submission, or a submission with a complex format, or are a high-risk source, please contact us.
In our experience it is always possible to find a custom solution for even the most seemingly difficult situations. If the computer you are uploading from could subsequently be audited in an investigation, consider using a computer that is not easily tied to you. Technical users can also use Tails to help ensure you do not leave any records of your submission on the computer. If you have any issues talk to WikiLeaks. We are the global experts in source protection — it is a complex field.
Even those who mean well often do not have the experience or expertise to advise properly. This includes other media organisations. If you are a high-risk source, avoid saying anything or doing anything after submitting which might promote suspicion.
In particular, you should try to stick to your normal routine and behaviour. If you are a high-risk source and the computer you prepared your submission on, or uploaded it from, could subsequently be audited in an investigation, we recommend that you format and dispose of the computer hard drive and any other storage media you used.
In particular, hard drives retain data after formatting which may be visible to a digital forensics team and flash media USB sticks, memory cards and SSD drives retain data even after a secure erasure. This typically results in identifying tasks that need to be accomplished, but without micromanaging how to accomplish the task.
These techniques outline the general tasks which need to be accomplished, however do not provide specific instructions for how to accomplish them. Procedures include all of the necessary steps involved for performing a specified task, but without any of the high-level consideration or background for why the task is being performed.
The priority for procedures is ensuring complete detailed instructions so a task can be correctly completed by anyone qualified to follow the directions. This would include all the information about frequency of change, type of oil, type of filter, location of drain plug, tools required, etc. The procedures should be such that anyone well, almost anyone would be able to perform the task described using these directions.
Presenting Tactics, Techniques, and Procedures as a hierarchy can help to visualize the relationships between them. To accomplish the desired Tactics it will be necessary to use one or more Techniques. To complete the desired Techniques there will need to be one or more Procedures to follow. While TTP has been used to describe conventional warfare, it can also be very useful in describing cyber security. The column headers represent the various high level Tactics highlighted in red that an attacker utilizes as part of the cyber attack cycle.
The individual entries in the Matrix under the Tactics represent the Techniques highlighted in green. As we previously discussed, for each Tactic, numerous Techniques are listed. When you go click on any Technique, it will take you to a page with additional details of the Technique, including examples of real use by malicious actors.
These examples represent the Procedures used and provide detailed analysis of the exact actions taken and resources used. Procedures can also be viewed as the specific hashes or exact tools and command lines used for specific malicious activity. A Procedure to implement this technique could be to use the SysInternals PsExec tool, which creates a binary to execute a command, copies it to a Windows Admin Share, and starts a service from that share. Journal Articles Conference Papers Books.
Technologies Sectors. Items Per Page All. Please fix the following:. Search Reset.
0コメント