#4: T1071

Understanding Application Layer Protocol attacks

May 01, 2025

∙ Paid

MITRE ATT&CK technique T1071 refers to a tactic used by threat actors to communicate with compromised systems using standard application layer protocols. These protocols include familiar tools like web traffic (HTTP/S), email (SMTP), or messaging protocols (like WebSockets or IRC). Attackers use these channels because they are commonly allowed through f…

Continue reading this post for free, courtesy of Packt.

Or purchase a paid subscription.