# DET0764 — Detection of Adversary-in-the-Middle ## Descrição Estratégia de detecção DET0764. Plataformas: ICS. ## Data Components Necessários | Data Component | Descrição | |---|---| | [[dc0032-process-creation\|DC0032 — Process Creation]] | Telemetria necessária | | [[dc0038-application-log-content\|DC0038 — Application Log Content]] | Telemetria necessária | | [[dc0060-service-creation\|DC0060 — Service Creation]] | Telemetria necessária | | [[dc0063-windows-registry-key-modification\|DC0063 — Windows Registry Key Modification]] | Telemetria necessária | | [[dc0078-network-traffic-flow\|DC0078 — Network Traffic Flow]] | Telemetria necessária | | [[dc0085-network-traffic-content\|DC0085 — Network Traffic Content]] | Telemetria necessária | ## Analytics Relacionadas - [[an1896-analytic-1896|AN1896 (ICS)]] --- *Fonte: [MITRE ATT&CK — DET0764](https://attack.mitre.org/detectionstrategies/DET0764)*