From e47e86ab9840f5351d79f016bfb62307ef13677b Mon Sep 17 00:00:00 2001
From: Omar Santos <santosomar@gmail.com>
Date: Sun, 5 May 2024 16:57:32 -0400
Subject: [PATCH] Update and rename Figure4-2.svg to attack_saas.svg

---
 cloud_resources/{Figure4-2.svg => attack_saas.svg} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename cloud_resources/{Figure4-2.svg => attack_saas.svg} (99%)

diff --git a/cloud_resources/Figure4-2.svg b/cloud_resources/attack_saas.svg
similarity index 99%
rename from cloud_resources/Figure4-2.svg
rename to cloud_resources/attack_saas.svg
index 81b614a..20cd38d 100644
--- a/cloud_resources/Figure4-2.svg
+++ b/cloud_resources/attack_saas.svg
@@ -1,2 +1,2 @@
 <?xml version="1.0" standalone="no"?>
-<svg width="1056" height="816" xmlns="http://www.w3.org/2000/svg" id="svgvm0"><g transform="translate(5,5)" style="font-family: sans-serif;"><g><g transform="translate(0, 0)"><g transform="translate(0,5)"><rect class="header-box" width="336.8474576271186" height="86" stroke="black" fill="white" rx="5"/><rect class="label-cover" x="8" y="-10" width="34.03125" height="18" fill="white" rx="5"/><text class="header-box-label" x="10" font-size="12" fill="black" y="3">about</text><g class="header-box-content" fill="black" transform="translate(5, 0)"><g transform="translate(0, 2.0975609756097526)"><text font-size="12"><tspan x="4" y="23.426829268292682">Omar's SaaS</tspan></text><line x1="0" x2="326.8474576271186" y1="39.853658536585364" y2="39.853658536585364" stroke="#dddddd"/></g><g transform="translate(0, 44.048780487804876)"><text font-size="12"><tspan x="4" y="16.176829268292682">MITRE</tspan><tspan x="4" y="30.676829268292682">ATT&amp;CK TTPs for SaaS implementations</tspan></text></g></g></g></g><g transform="translate(354.57627118644064, 0)"><g transform="translate(0,5)"><rect class="header-box" width="336.8474576271186" height="86" stroke="black" fill="white" rx="5"/><rect class="label-cover" x="8" y="-10" width="43.359375" height="18" fill="white" rx="5"/><text class="header-box-label" x="10" font-size="12" fill="black" y="3">domain</text><g class="header-box-content" fill="black" transform="translate(5, 0)"><g transform="translate(0, 4.095238095238102)"><text font-size="12"><tspan x="4" y="42.4047619047619">Enterprise ATT&amp;CK v15</tspan></text></g></g></g></g><g transform="translate(709.1525423728813, 0)"><g transform="translate(0,5)"><rect class="header-box" width="336.8474576271186" height="86" stroke="black" fill="white" rx="5"/><rect class="label-cover" x="8" y="-10" width="53.3515625" height="18" fill="white" rx="5"/><text class="header-box-label" x="10" font-size="12" fill="black" y="3">platforms</text><g class="header-box-content" fill="black" transform="translate(5, 0)"><g transform="translate(0, 4.095238095238102)"><text font-size="12"><tspan x="4" y="42.4047619047619">SaaS, Office 365, Google Workspace</tspan></text></g></g></g></g></g><g transform="translate(0,97)"><g><g class="tactic initial-access" transform="translate(0, 0)"><g class="techniques"><g class="technique T1189" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Drive-by</tspan><tspan x="4" y="26.184782608695652">Compromise</tspan></text></g><g class="technique T1566" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="18.934782608695652">Phishing</tspan></text></g><g class="technique T1199" transform="translate(0, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Trusted</tspan><tspan x="4" y="26.184782608695652">Relationship</tspan></text></g><g class="technique T1078" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Valid</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1566.002" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Spearphishing</tspan><tspan x="4" y="25.184782608695652">Link</tspan></text></g><g class="subtechnique T1566.004" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Spearphishing</tspan><tspan x="4" y="25.184782608695652">Voice</tspan></text></g><g class="subtechnique T1078.004" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g><g class="subtechnique T1078.001" transform="translate(15, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Default</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Initial</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Access</tspan></text></g></g><g class="tactic execution" transform="translate(95.0909090909091, 0)"><g class="techniques"><g class="technique T1059" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Command</tspan><tspan x="4" y="17.934782608695652">and Scripting</tspan><tspan x="4" y="27.89130434782609">Interpreter</tspan></text></g><g class="technique T1648" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Serverless</tspan><tspan x="4" y="26.184782608695652">Execution</tspan></text></g><g class="technique T1072" transform="translate(0, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Software</tspan><tspan x="4" y="17.934782608695652">Deployment</tspan><tspan x="4" y="27.89130434782609">Tools</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1059.009" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">API</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Execution</tspan></text></g></g><g class="tactic persistence" transform="translate(190.1818181818182, 0)"><g class="techniques"><g class="technique T1098" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Account</tspan><tspan x="4" y="26.184782608695652">Manipulation</tspan></text></g><g class="technique T1136" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Create</tspan><tspan x="4" y="26.184782608695652">Account</tspan></text></g><g class="technique T1546" transform="translate(0, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Event Triggered</tspan><tspan x="4" y="25.184782608695652">Execution</tspan></text></g><g class="technique T1556" transform="translate(0, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Modify</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Process</tspan></text></g><g class="technique T1137" transform="translate(0, 401.30434782608694)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Office</tspan><tspan x="4" y="17.934782608695652">Application</tspan><tspan x="4" y="27.89130434782609">Startup</tspan></text></g><g class="technique T1078" transform="translate(0, 617.3913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Valid</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1098.001" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Additional</tspan><tspan x="4" y="17.934782608695652">Cloud</tspan><tspan x="4" y="27.89130434782609">Credentials</tspan></text></g><g class="subtechnique T1098.003" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Additional</tspan><tspan x="4" y="25.184782608695652">Cloud Roles</tspan></text></g><g class="subtechnique T1098.002" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Additional</tspan><tspan x="4" y="17.934782608695652">Email Delegate</tspan><tspan x="4" y="27.89130434782609">Permissions</tspan></text></g><g class="subtechnique T1098.005" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Device</tspan><tspan x="4" y="25.184782608695652">Registration</tspan></text></g><g class="subtechnique T1136.003" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Account</tspan></text></g><g class="subtechnique T1556.009" transform="translate(15, 308.69565217391306)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Conditional</tspan><tspan x="4" y="17.934782608695652">Access</tspan><tspan x="4" y="27.89130434782609">Policies</tspan></text></g><g class="subtechnique T1556.007" transform="translate(15, 339.5652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Hybrid</tspan><tspan x="4" y="26.184782608695652">Identity</tspan></text></g><g class="subtechnique T1556.006" transform="translate(15, 370.4347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Multi-Factor</tspan><tspan x="4" y="25.184782608695652">Authentication</tspan></text></g><g class="subtechnique T1137.006" transform="translate(15, 432.1739130434783)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="18.934782608695652">Add-ins</tspan></text></g><g class="subtechnique T1137.001" transform="translate(15, 463.04347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Office</tspan><tspan x="4" y="17.934782608695652">Template</tspan><tspan x="4" y="27.89130434782609">Macros</tspan></text></g><g class="subtechnique T1137.002" transform="translate(15, 493.9130434782609)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Office</tspan><tspan x="4" y="26.184782608695652">Test</tspan></text></g><g class="subtechnique T1137.003" transform="translate(15, 524.7826086956521)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Outlook</tspan><tspan x="4" y="26.184782608695652">Forms</tspan></text></g><g class="subtechnique T1137.004" transform="translate(15, 555.6521739130435)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Outlook</tspan><tspan x="4" y="26.184782608695652">Home Page</tspan></text></g><g class="subtechnique T1137.005" transform="translate(15, 586.5217391304348)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Outlook</tspan><tspan x="4" y="26.184782608695652">Rules</tspan></text></g><g class="subtechnique T1078.004" transform="translate(15, 648.2608695652174)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g><g class="subtechnique T1078.001" transform="translate(15, 679.1304347826087)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Default</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Persistence</tspan></text></g></g><g class="tactic privilege-escalation" transform="translate(285.27272727272725, 0)"><g class="techniques"><g class="technique T1548" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Abuse Elevation</tspan><tspan x="4" y="17.934782608695652">Control</tspan><tspan x="4" y="27.89130434782609">Mechanism</tspan></text></g><g class="technique T1098" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Account</tspan><tspan x="4" y="26.184782608695652">Manipulation</tspan></text></g><g class="technique T1484" transform="translate(0, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Domain or</tspan><tspan x="4" y="17.934782608695652">Tenant Policy</tspan><tspan x="4" y="27.89130434782609">Modification</tspan></text></g><g class="technique T1546" transform="translate(0, 308.69565217391306)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Event Triggered</tspan><tspan x="4" y="25.184782608695652">Execution</tspan></text></g><g class="technique T1078" transform="translate(0, 339.5652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Valid</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1548.005" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Temporary</tspan><tspan x="4" y="17.934782608695652">Elevated</tspan><tspan x="4" y="27.89130434782609">Cloud Access</tspan></text></g><g class="subtechnique T1098.001" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Additional</tspan><tspan x="4" y="17.934782608695652">Cloud</tspan><tspan x="4" y="27.89130434782609">Credentials</tspan></text></g><g class="subtechnique T1098.003" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Additional</tspan><tspan x="4" y="25.184782608695652">Cloud Roles</tspan></text></g><g class="subtechnique T1098.002" transform="translate(15, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Additional</tspan><tspan x="4" y="17.934782608695652">Email Delegate</tspan><tspan x="4" y="27.89130434782609">Permissions</tspan></text></g><g class="subtechnique T1098.005" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Device</tspan><tspan x="4" y="25.184782608695652">Registration</tspan></text></g><g class="subtechnique T1484.002" transform="translate(15, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Trust</tspan><tspan x="4" y="25.184782608695652">Modification</tspan></text></g><g class="subtechnique T1078.004" transform="translate(15, 370.4347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g><g class="subtechnique T1078.001" transform="translate(15, 401.30434782608694)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Default</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Privilege</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Escalation</tspan></text></g></g><g class="tactic defense-evasion" transform="translate(380.3636363636364, 0)"><g class="techniques"><g class="technique T1548" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Abuse Elevation</tspan><tspan x="4" y="17.934782608695652">Control</tspan><tspan x="4" y="27.89130434782609">Mechanism</tspan></text></g><g class="technique T1484" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Domain or</tspan><tspan x="4" y="17.934782608695652">Tenant Policy</tspan><tspan x="4" y="27.89130434782609">Modification</tspan></text></g><g class="technique T1211" transform="translate(0, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Exploitation</tspan><tspan x="4" y="17.934782608695652">for</tspan><tspan x="4" y="27.89130434782609">Defense Evasion</tspan></text></g><g class="technique T1564" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Hide</tspan><tspan x="4" y="26.184782608695652">Artifacts</tspan></text></g><g class="technique T1562" transform="translate(0, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Impair</tspan><tspan x="4" y="26.184782608695652">Defenses</tspan></text></g><g class="technique T1656" transform="translate(0, 308.69565217391306)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="17.934782608695652">Impersonation</tspan></text></g><g class="technique T1070" transform="translate(0, 339.5652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Indicator</tspan><tspan x="4" y="26.184782608695652">Removal</tspan></text></g><g class="technique T1556" transform="translate(0, 401.30434782608694)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Modify</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Process</tspan></text></g><g class="technique T1550" transform="translate(0, 524.7826086956521)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Use Alternate</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Material</tspan></text></g><g class="technique T1078" transform="translate(0, 617.3913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Valid</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1548.005" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Temporary</tspan><tspan x="4" y="17.934782608695652">Elevated</tspan><tspan x="4" y="27.89130434782609">Cloud Access</tspan></text></g><g class="subtechnique T1484.002" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Trust</tspan><tspan x="4" y="25.184782608695652">Modification</tspan></text></g><g class="subtechnique T1564.008" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Email</tspan><tspan x="4" y="25.184782608695652">Hiding Rules</tspan></text></g><g class="subtechnique T1562.008" transform="translate(15, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Disable</tspan><tspan x="4" y="17.934782608695652">or Modify</tspan><tspan x="4" y="27.89130434782609">Cloud Logs</tspan></text></g><g class="subtechnique T1070.008" transform="translate(15, 370.4347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Clear</tspan><tspan x="4" y="25.184782608695652">Mailbox Data</tspan></text></g><g class="subtechnique T1556.009" transform="translate(15, 432.1739130434783)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Conditional</tspan><tspan x="4" y="17.934782608695652">Access</tspan><tspan x="4" y="27.89130434782609">Policies</tspan></text></g><g class="subtechnique T1556.007" transform="translate(15, 463.04347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Hybrid</tspan><tspan x="4" y="26.184782608695652">Identity</tspan></text></g><g class="subtechnique T1556.006" transform="translate(15, 493.9130434782609)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Multi-Factor</tspan><tspan x="4" y="25.184782608695652">Authentication</tspan></text></g><g class="subtechnique T1550.001" transform="translate(15, 555.6521739130435)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Application</tspan><tspan x="4" y="25.184782608695652">Access Token</tspan></text></g><g class="subtechnique T1550.004" transform="translate(15, 586.5217391304348)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Web Session</tspan><tspan x="4" y="25.184782608695652">Cookie</tspan></text></g><g class="subtechnique T1078.004" transform="translate(15, 648.2608695652174)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g><g class="subtechnique T1078.001" transform="translate(15, 679.1304347826087)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Default</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Defense</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Evasion</tspan></text></g></g><g class="tactic credential-access" transform="translate(475.4545454545455, 0)"><g class="techniques"><g class="technique T1110" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Brute</tspan><tspan x="4" y="26.184782608695652">Force</tspan></text></g><g class="technique T1606" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Forge Web</tspan><tspan x="4" y="26.184782608695652">Credentials</tspan></text></g><g class="technique T1556" transform="translate(0, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Modify</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Process</tspan></text></g><g class="technique T1621" transform="translate(0, 401.30434782608694)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Multi-Factor</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Request Generation</tspan></text></g><g class="technique T1528" transform="translate(0, 432.1739130434783)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Steal</tspan><tspan x="4" y="17.934782608695652">Application</tspan><tspan x="4" y="27.89130434782609">Access Token</tspan></text></g><g class="technique T1539" transform="translate(0, 463.04347826086956)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Steal Web</tspan><tspan x="4" y="25.184782608695652">Session Cookie</tspan></text></g><g class="technique T1552" transform="translate(0, 493.9130434782609)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Unsecured</tspan><tspan x="4" y="26.184782608695652">Credentials</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1110.004" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Credential</tspan><tspan x="4" y="26.184782608695652">Stuffing</tspan></text></g><g class="subtechnique T1110.002" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Password</tspan><tspan x="4" y="26.184782608695652">Cracking</tspan></text></g><g class="subtechnique T1110.001" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Password</tspan><tspan x="4" y="26.184782608695652">Guessing</tspan></text></g><g class="subtechnique T1110.003" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Password</tspan><tspan x="4" y="26.184782608695652">Spraying</tspan></text></g><g class="subtechnique T1606.002" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">SAML</tspan><tspan x="4" y="26.184782608695652">Tokens</tspan></text></g><g class="subtechnique T1606.001" transform="translate(15, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Web</tspan><tspan x="4" y="26.184782608695652">Cookies</tspan></text></g><g class="subtechnique T1556.009" transform="translate(15, 308.69565217391306)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Conditional</tspan><tspan x="4" y="17.934782608695652">Access</tspan><tspan x="4" y="27.89130434782609">Policies</tspan></text></g><g class="subtechnique T1556.007" transform="translate(15, 339.5652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Hybrid</tspan><tspan x="4" y="26.184782608695652">Identity</tspan></text></g><g class="subtechnique T1556.006" transform="translate(15, 370.4347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Multi-Factor</tspan><tspan x="4" y="25.184782608695652">Authentication</tspan></text></g><g class="subtechnique T1552.008" transform="translate(15, 524.7826086956521)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Chat</tspan><tspan x="4" y="26.184782608695652">Messages</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Credential</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Access</tspan></text></g></g><g class="tactic discovery" transform="translate(570.5454545454545, 0)"><g class="techniques"><g class="technique T1087" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Account</tspan><tspan x="4" y="26.184782608695652">Discovery</tspan></text></g><g class="technique T1538" transform="translate(0, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Cloud Service</tspan><tspan x="4" y="25.184782608695652">Dashboard</tspan></text></g><g class="technique T1526" transform="translate(0, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Cloud Service</tspan><tspan x="4" y="25.184782608695652">Discovery</tspan></text></g><g class="technique T1069" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Permission</tspan><tspan x="4" y="17.934782608695652">Groups</tspan><tspan x="4" y="27.89130434782609">Discovery</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1087.004" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Account</tspan></text></g><g class="subtechnique T1087.003" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Email</tspan><tspan x="4" y="26.184782608695652">Account</tspan></text></g><g class="subtechnique T1069.003" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Groups</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Discovery</tspan></text></g></g><g class="tactic lateral-movement" transform="translate(665.6363636363636, 0)"><g class="techniques"><g class="technique T1534" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Internal</tspan><tspan x="4" y="25.184782608695652">Spearphishing</tspan></text></g><g class="technique T1072" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Software</tspan><tspan x="4" y="17.934782608695652">Deployment</tspan><tspan x="4" y="27.89130434782609">Tools</tspan></text></g><g class="technique T1080" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Taint Shared</tspan><tspan x="4" y="26.184782608695652">Content</tspan></text></g><g class="technique T1550" transform="translate(0, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Use Alternate</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Material</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1550.001" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Application</tspan><tspan x="4" y="25.184782608695652">Access Token</tspan></text></g><g class="subtechnique T1550.004" transform="translate(15, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Web Session</tspan><tspan x="4" y="25.184782608695652">Cookie</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Lateral</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Movement</tspan></text></g></g><g class="tactic collection" transform="translate(760.7272727272727, 0)"><g class="techniques"><g class="technique T1119" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Automated</tspan><tspan x="4" y="26.184782608695652">Collection</tspan></text></g><g class="technique T1530" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Data from</tspan><tspan x="4" y="25.184782608695652">Cloud Storage</tspan></text></g><g class="technique T1213" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Data from</tspan><tspan x="4" y="17.934782608695652">Information</tspan><tspan x="4" y="27.89130434782609">Repositories</tspan></text></g><g class="technique T1114" transform="translate(0, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Email</tspan><tspan x="4" y="26.184782608695652">Collection</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1213.003" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Code</tspan><tspan x="4" y="25.184782608695652">Repositories</tspan></text></g><g class="subtechnique T1213.001" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="18.934782608695652">Confluence</tspan></text></g><g class="subtechnique T1213.002" transform="translate(15, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="18.934782608695652">Sharepoint</tspan></text></g><g class="subtechnique T1114.003" transform="translate(15, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Email</tspan><tspan x="4" y="17.934782608695652">Forwarding</tspan><tspan x="4" y="27.89130434782609">Rule</tspan></text></g><g class="subtechnique T1114.002" transform="translate(15, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Remote Email</tspan><tspan x="4" y="25.184782608695652">Collection</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Collection</tspan></text></g></g><g class="tactic exfiltration" transform="translate(855.8181818181819, 0)"><g class="techniques"><g class="technique T1048" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Exfiltration</tspan><tspan x="4" y="17.934782608695652">Over Alternative</tspan><tspan x="4" y="27.89130434782609">Protocol</tspan></text></g><g class="technique T1567" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Exfiltration</tspan><tspan x="4" y="17.934782608695652">Over</tspan><tspan x="4" y="27.89130434782609">Web Service</tspan></text></g><g class="technique T1537" transform="translate(0, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Transfer</tspan><tspan x="4" y="17.934782608695652">Data to</tspan><tspan x="4" y="27.89130434782609">Cloud Account</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1567.004" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Exfiltration</tspan><tspan x="4" y="25.184782608695652">Over Webhook</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Exfiltration</tspan></text></g></g><g class="tactic impact" transform="translate(950.909090909091, 0)"><g class="techniques"><g class="technique T1531" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Account</tspan><tspan x="4" y="25.184782608695652">Access Removal</tspan></text></g><g class="technique T1499" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Endpoint Denial</tspan><tspan x="4" y="25.184782608695652">of Service</tspan></text></g><g class="technique T1657" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Financial</tspan><tspan x="4" y="26.184782608695652">Theft</tspan></text></g><g class="technique T1498" transform="translate(0, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Network Denial</tspan><tspan x="4" y="25.184782608695652">of Service</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1499.003" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Application</tspan><tspan x="4" y="17.934782608695652">Exhaustion</tspan><tspan x="4" y="27.89130434782609">Flood</tspan></text></g><g class="subtechnique T1499.004" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Application</tspan><tspan x="4" y="17.934782608695652">or System</tspan><tspan x="4" y="27.89130434782609">Exploitation</tspan></text></g><g class="subtechnique T1499.002" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Service</tspan><tspan x="4" y="17.934782608695652">Exhaustion</tspan><tspan x="4" y="27.89130434782609">Flood</tspan></text></g><g class="subtechnique T1498.001" transform="translate(15, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Direct</tspan><tspan x="4" y="17.934782608695652">Network</tspan><tspan x="4" y="27.89130434782609">Flood</tspan></text></g><g class="subtechnique T1498.002" transform="translate(15, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Reflection</tspan><tspan x="4" y="25.184782608695652">Amplification</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Impact</tspan></text></g></g></g></g></g></svg>
\ No newline at end of file
+<svg width="1056" height="816" xmlns="http://www.w3.org/2000/svg" id="svgvm0"><g transform="translate(5,5)" style="font-family: sans-serif;"><g><g transform="translate(0, 0)"><g transform="translate(0,5)"><rect class="header-box" width="336.8474576271186" height="86" stroke="black" fill="white" rx="5"/><rect class="label-cover" x="8" y="-10" width="34.03125" height="18" fill="white" rx="5"/><text class="header-box-label" x="10" font-size="12" fill="black" y="3">about</text><g class="header-box-content" fill="black" transform="translate(5, 0)"><g transform="translate(0, 2.0975609756097526)"><text font-size="12"><tspan x="4" y="23.426829268292682">Omar's SaaS</tspan></text><line x1="0" x2="326.8474576271186" y1="39.853658536585364" y2="39.853658536585364" stroke="#dddddd"/></g><g transform="translate(0, 44.048780487804876)"><text font-size="12"><tspan x="4" y="16.176829268292682">MITRE</tspan><tspan x="4" y="30.676829268292682">ATT&amp;CK TTPs for SaaS implementations</tspan></text></g></g></g></g><g transform="translate(354.57627118644064, 0)"><g transform="translate(0,5)"><rect class="header-box" width="336.8474576271186" height="86" stroke="black" fill="white" rx="5"/><rect class="label-cover" x="8" y="-10" width="43.359375" height="18" fill="white" rx="5"/><text class="header-box-label" x="10" font-size="12" fill="black" y="3">domain</text><g class="header-box-content" fill="black" transform="translate(5, 0)"><g transform="translate(0, 4.095238095238102)"><text font-size="12"><tspan x="4" y="42.4047619047619">Enterprise ATT&amp;CK v15</tspan></text></g></g></g></g><g transform="translate(709.1525423728813, 0)"><g transform="translate(0,5)"><rect class="header-box" width="336.8474576271186" height="86" stroke="black" fill="white" rx="5"/><rect class="label-cover" x="8" y="-10" width="53.3515625" height="18" fill="white" rx="5"/><text class="header-box-label" x="10" font-size="12" fill="black" y="3">platforms</text><g class="header-box-content" fill="black" transform="translate(5, 0)"><g transform="translate(0, 4.095238095238102)"><text font-size="12"><tspan x="4" y="42.4047619047619">SaaS, Office 365, Google Workspace</tspan></text></g></g></g></g></g><g transform="translate(0,97)"><g><g class="tactic initial-access" transform="translate(0, 0)"><g class="techniques"><g class="technique T1189" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Drive-by</tspan><tspan x="4" y="26.184782608695652">Compromise</tspan></text></g><g class="technique T1566" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="18.934782608695652">Phishing</tspan></text></g><g class="technique T1199" transform="translate(0, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Trusted</tspan><tspan x="4" y="26.184782608695652">Relationship</tspan></text></g><g class="technique T1078" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Valid</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1566.002" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Spearphishing</tspan><tspan x="4" y="25.184782608695652">Link</tspan></text></g><g class="subtechnique T1566.004" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Spearphishing</tspan><tspan x="4" y="25.184782608695652">Voice</tspan></text></g><g class="subtechnique T1078.004" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g><g class="subtechnique T1078.001" transform="translate(15, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Default</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Initial</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Access</tspan></text></g></g><g class="tactic execution" transform="translate(95.0909090909091, 0)"><g class="techniques"><g class="technique T1059" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Command</tspan><tspan x="4" y="17.934782608695652">and Scripting</tspan><tspan x="4" y="27.89130434782609">Interpreter</tspan></text></g><g class="technique T1648" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Serverless</tspan><tspan x="4" y="26.184782608695652">Execution</tspan></text></g><g class="technique T1072" transform="translate(0, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Software</tspan><tspan x="4" y="17.934782608695652">Deployment</tspan><tspan x="4" y="27.89130434782609">Tools</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1059.009" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">API</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Execution</tspan></text></g></g><g class="tactic persistence" transform="translate(190.1818181818182, 0)"><g class="techniques"><g class="technique T1098" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Account</tspan><tspan x="4" y="26.184782608695652">Manipulation</tspan></text></g><g class="technique T1136" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Create</tspan><tspan x="4" y="26.184782608695652">Account</tspan></text></g><g class="technique T1546" transform="translate(0, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Event Triggered</tspan><tspan x="4" y="25.184782608695652">Execution</tspan></text></g><g class="technique T1556" transform="translate(0, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Modify</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Process</tspan></text></g><g class="technique T1137" transform="translate(0, 401.30434782608694)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Office</tspan><tspan x="4" y="17.934782608695652">Application</tspan><tspan x="4" y="27.89130434782609">Startup</tspan></text></g><g class="technique T1078" transform="translate(0, 617.3913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Valid</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1098.001" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Additional</tspan><tspan x="4" y="17.934782608695652">Cloud</tspan><tspan x="4" y="27.89130434782609">Credentials</tspan></text></g><g class="subtechnique T1098.003" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Additional</tspan><tspan x="4" y="25.184782608695652">Cloud Roles</tspan></text></g><g class="subtechnique T1098.002" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Additional</tspan><tspan x="4" y="17.934782608695652">Email Delegate</tspan><tspan x="4" y="27.89130434782609">Permissions</tspan></text></g><g class="subtechnique T1098.005" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Device</tspan><tspan x="4" y="25.184782608695652">Registration</tspan></text></g><g class="subtechnique T1136.003" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Account</tspan></text></g><g class="subtechnique T1556.009" transform="translate(15, 308.69565217391306)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Conditional</tspan><tspan x="4" y="17.934782608695652">Access</tspan><tspan x="4" y="27.89130434782609">Policies</tspan></text></g><g class="subtechnique T1556.007" transform="translate(15, 339.5652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Hybrid</tspan><tspan x="4" y="26.184782608695652">Identity</tspan></text></g><g class="subtechnique T1556.006" transform="translate(15, 370.4347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Multi-Factor</tspan><tspan x="4" y="25.184782608695652">Authentication</tspan></text></g><g class="subtechnique T1137.006" transform="translate(15, 432.1739130434783)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="18.934782608695652">Add-ins</tspan></text></g><g class="subtechnique T1137.001" transform="translate(15, 463.04347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Office</tspan><tspan x="4" y="17.934782608695652">Template</tspan><tspan x="4" y="27.89130434782609">Macros</tspan></text></g><g class="subtechnique T1137.002" transform="translate(15, 493.9130434782609)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Office</tspan><tspan x="4" y="26.184782608695652">Test</tspan></text></g><g class="subtechnique T1137.003" transform="translate(15, 524.7826086956521)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Outlook</tspan><tspan x="4" y="26.184782608695652">Forms</tspan></text></g><g class="subtechnique T1137.004" transform="translate(15, 555.6521739130435)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Outlook</tspan><tspan x="4" y="26.184782608695652">Home Page</tspan></text></g><g class="subtechnique T1137.005" transform="translate(15, 586.5217391304348)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Outlook</tspan><tspan x="4" y="26.184782608695652">Rules</tspan></text></g><g class="subtechnique T1078.004" transform="translate(15, 648.2608695652174)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g><g class="subtechnique T1078.001" transform="translate(15, 679.1304347826087)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Default</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Persistence</tspan></text></g></g><g class="tactic privilege-escalation" transform="translate(285.27272727272725, 0)"><g class="techniques"><g class="technique T1548" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Abuse Elevation</tspan><tspan x="4" y="17.934782608695652">Control</tspan><tspan x="4" y="27.89130434782609">Mechanism</tspan></text></g><g class="technique T1098" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Account</tspan><tspan x="4" y="26.184782608695652">Manipulation</tspan></text></g><g class="technique T1484" transform="translate(0, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Domain or</tspan><tspan x="4" y="17.934782608695652">Tenant Policy</tspan><tspan x="4" y="27.89130434782609">Modification</tspan></text></g><g class="technique T1546" transform="translate(0, 308.69565217391306)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Event Triggered</tspan><tspan x="4" y="25.184782608695652">Execution</tspan></text></g><g class="technique T1078" transform="translate(0, 339.5652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Valid</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1548.005" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Temporary</tspan><tspan x="4" y="17.934782608695652">Elevated</tspan><tspan x="4" y="27.89130434782609">Cloud Access</tspan></text></g><g class="subtechnique T1098.001" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Additional</tspan><tspan x="4" y="17.934782608695652">Cloud</tspan><tspan x="4" y="27.89130434782609">Credentials</tspan></text></g><g class="subtechnique T1098.003" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Additional</tspan><tspan x="4" y="25.184782608695652">Cloud Roles</tspan></text></g><g class="subtechnique T1098.002" transform="translate(15, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Additional</tspan><tspan x="4" y="17.934782608695652">Email Delegate</tspan><tspan x="4" y="27.89130434782609">Permissions</tspan></text></g><g class="subtechnique T1098.005" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Device</tspan><tspan x="4" y="25.184782608695652">Registration</tspan></text></g><g class="subtechnique T1484.002" transform="translate(15, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Trust</tspan><tspan x="4" y="25.184782608695652">Modification</tspan></text></g><g class="subtechnique T1078.004" transform="translate(15, 370.4347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g><g class="subtechnique T1078.001" transform="translate(15, 401.30434782608694)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Default</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Privilege</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Escalation</tspan></text></g></g><g class="tactic defense-evasion" transform="translate(380.3636363636364, 0)"><g class="techniques"><g class="technique T1548" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Abuse Elevation</tspan><tspan x="4" y="17.934782608695652">Control</tspan><tspan x="4" y="27.89130434782609">Mechanism</tspan></text></g><g class="technique T1484" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Domain or</tspan><tspan x="4" y="17.934782608695652">Tenant Policy</tspan><tspan x="4" y="27.89130434782609">Modification</tspan></text></g><g class="technique T1211" transform="translate(0, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Exploitation</tspan><tspan x="4" y="17.934782608695652">for</tspan><tspan x="4" y="27.89130434782609">Defense Evasion</tspan></text></g><g class="technique T1564" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Hide</tspan><tspan x="4" y="26.184782608695652">Artifacts</tspan></text></g><g class="technique T1562" transform="translate(0, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Impair</tspan><tspan x="4" y="26.184782608695652">Defenses</tspan></text></g><g class="technique T1656" transform="translate(0, 308.69565217391306)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="17.934782608695652">Impersonation</tspan></text></g><g class="technique T1070" transform="translate(0, 339.5652173913044)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Indicator</tspan><tspan x="4" y="26.184782608695652">Removal</tspan></text></g><g class="technique T1556" transform="translate(0, 401.30434782608694)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Modify</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Process</tspan></text></g><g class="technique T1550" transform="translate(0, 524.7826086956521)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Use Alternate</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Material</tspan></text></g><g class="technique T1078" transform="translate(0, 617.3913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Valid</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1548.005" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Temporary</tspan><tspan x="4" y="17.934782608695652">Elevated</tspan><tspan x="4" y="27.89130434782609">Cloud Access</tspan></text></g><g class="subtechnique T1484.002" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Trust</tspan><tspan x="4" y="25.184782608695652">Modification</tspan></text></g><g class="subtechnique T1564.008" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Email</tspan><tspan x="4" y="25.184782608695652">Hiding Rules</tspan></text></g><g class="subtechnique T1562.008" transform="translate(15, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Disable</tspan><tspan x="4" y="17.934782608695652">or Modify</tspan><tspan x="4" y="27.89130434782609">Cloud Logs</tspan></text></g><g class="subtechnique T1070.008" transform="translate(15, 370.4347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Clear</tspan><tspan x="4" y="25.184782608695652">Mailbox Data</tspan></text></g><g class="subtechnique T1556.009" transform="translate(15, 432.1739130434783)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Conditional</tspan><tspan x="4" y="17.934782608695652">Access</tspan><tspan x="4" y="27.89130434782609">Policies</tspan></text></g><g class="subtechnique T1556.007" transform="translate(15, 463.04347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Hybrid</tspan><tspan x="4" y="26.184782608695652">Identity</tspan></text></g><g class="subtechnique T1556.006" transform="translate(15, 493.9130434782609)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Multi-Factor</tspan><tspan x="4" y="25.184782608695652">Authentication</tspan></text></g><g class="subtechnique T1550.001" transform="translate(15, 555.6521739130435)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Application</tspan><tspan x="4" y="25.184782608695652">Access Token</tspan></text></g><g class="subtechnique T1550.004" transform="translate(15, 586.5217391304348)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Web Session</tspan><tspan x="4" y="25.184782608695652">Cookie</tspan></text></g><g class="subtechnique T1078.004" transform="translate(15, 648.2608695652174)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g><g class="subtechnique T1078.001" transform="translate(15, 679.1304347826087)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Default</tspan><tspan x="4" y="26.184782608695652">Accounts</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Defense</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Evasion</tspan></text></g></g><g class="tactic credential-access" transform="translate(475.4545454545455, 0)"><g class="techniques"><g class="technique T1110" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Brute</tspan><tspan x="4" y="26.184782608695652">Force</tspan></text></g><g class="technique T1606" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Forge Web</tspan><tspan x="4" y="26.184782608695652">Credentials</tspan></text></g><g class="technique T1556" transform="translate(0, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Modify</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Process</tspan></text></g><g class="technique T1621" transform="translate(0, 401.30434782608694)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Multi-Factor</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Request Generation</tspan></text></g><g class="technique T1528" transform="translate(0, 432.1739130434783)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Steal</tspan><tspan x="4" y="17.934782608695652">Application</tspan><tspan x="4" y="27.89130434782609">Access Token</tspan></text></g><g class="technique T1539" transform="translate(0, 463.04347826086956)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Steal Web</tspan><tspan x="4" y="25.184782608695652">Session Cookie</tspan></text></g><g class="technique T1552" transform="translate(0, 493.9130434782609)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Unsecured</tspan><tspan x="4" y="26.184782608695652">Credentials</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1110.004" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Credential</tspan><tspan x="4" y="26.184782608695652">Stuffing</tspan></text></g><g class="subtechnique T1110.002" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Password</tspan><tspan x="4" y="26.184782608695652">Cracking</tspan></text></g><g class="subtechnique T1110.001" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Password</tspan><tspan x="4" y="26.184782608695652">Guessing</tspan></text></g><g class="subtechnique T1110.003" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Password</tspan><tspan x="4" y="26.184782608695652">Spraying</tspan></text></g><g class="subtechnique T1606.002" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">SAML</tspan><tspan x="4" y="26.184782608695652">Tokens</tspan></text></g><g class="subtechnique T1606.001" transform="translate(15, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Web</tspan><tspan x="4" y="26.184782608695652">Cookies</tspan></text></g><g class="subtechnique T1556.009" transform="translate(15, 308.69565217391306)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Conditional</tspan><tspan x="4" y="17.934782608695652">Access</tspan><tspan x="4" y="27.89130434782609">Policies</tspan></text></g><g class="subtechnique T1556.007" transform="translate(15, 339.5652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Hybrid</tspan><tspan x="4" y="26.184782608695652">Identity</tspan></text></g><g class="subtechnique T1556.006" transform="translate(15, 370.4347826086956)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Multi-Factor</tspan><tspan x="4" y="25.184782608695652">Authentication</tspan></text></g><g class="subtechnique T1552.008" transform="translate(15, 524.7826086956521)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Chat</tspan><tspan x="4" y="26.184782608695652">Messages</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Credential</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Access</tspan></text></g></g><g class="tactic discovery" transform="translate(570.5454545454545, 0)"><g class="techniques"><g class="technique T1087" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Account</tspan><tspan x="4" y="26.184782608695652">Discovery</tspan></text></g><g class="technique T1538" transform="translate(0, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Cloud Service</tspan><tspan x="4" y="25.184782608695652">Dashboard</tspan></text></g><g class="technique T1526" transform="translate(0, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Cloud Service</tspan><tspan x="4" y="25.184782608695652">Discovery</tspan></text></g><g class="technique T1069" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Permission</tspan><tspan x="4" y="17.934782608695652">Groups</tspan><tspan x="4" y="27.89130434782609">Discovery</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1087.004" transform="translate(15, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Account</tspan></text></g><g class="subtechnique T1087.003" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Email</tspan><tspan x="4" y="26.184782608695652">Account</tspan></text></g><g class="subtechnique T1069.003" transform="translate(15, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Cloud</tspan><tspan x="4" y="26.184782608695652">Groups</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Discovery</tspan></text></g></g><g class="tactic lateral-movement" transform="translate(665.6363636363636, 0)"><g class="techniques"><g class="technique T1534" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Internal</tspan><tspan x="4" y="25.184782608695652">Spearphishing</tspan></text></g><g class="technique T1072" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Software</tspan><tspan x="4" y="17.934782608695652">Deployment</tspan><tspan x="4" y="27.89130434782609">Tools</tspan></text></g><g class="technique T1080" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Taint Shared</tspan><tspan x="4" y="26.184782608695652">Content</tspan></text></g><g class="technique T1550" transform="translate(0, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Use Alternate</tspan><tspan x="4" y="17.934782608695652">Authentication</tspan><tspan x="4" y="27.89130434782609">Material</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1550.001" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Application</tspan><tspan x="4" y="25.184782608695652">Access Token</tspan></text></g><g class="subtechnique T1550.004" transform="translate(15, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Web Session</tspan><tspan x="4" y="25.184782608695652">Cookie</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="11.684782608695652">Lateral</tspan><tspan text-anchor="middle" x="47.54545454545455" y="26.184782608695652">Movement</tspan></text></g></g><g class="tactic collection" transform="translate(760.7272727272727, 0)"><g class="techniques"><g class="technique T1119" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Automated</tspan><tspan x="4" y="26.184782608695652">Collection</tspan></text></g><g class="technique T1530" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Data from</tspan><tspan x="4" y="25.184782608695652">Cloud Storage</tspan></text></g><g class="technique T1213" transform="translate(0, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Data from</tspan><tspan x="4" y="17.934782608695652">Information</tspan><tspan x="4" y="27.89130434782609">Repositories</tspan></text></g><g class="technique T1114" transform="translate(0, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Email</tspan><tspan x="4" y="26.184782608695652">Collection</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1213.003" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Code</tspan><tspan x="4" y="25.184782608695652">Repositories</tspan></text></g><g class="subtechnique T1213.001" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="18.934782608695652">Confluence</tspan></text></g><g class="subtechnique T1213.002" transform="translate(15, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="18.934782608695652">Sharepoint</tspan></text></g><g class="subtechnique T1114.003" transform="translate(15, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Email</tspan><tspan x="4" y="17.934782608695652">Forwarding</tspan><tspan x="4" y="27.89130434782609">Rule</tspan></text></g><g class="subtechnique T1114.002" transform="translate(15, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Remote Email</tspan><tspan x="4" y="25.184782608695652">Collection</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Collection</tspan></text></g></g><g class="tactic exfiltration" transform="translate(855.8181818181819, 0)"><g class="techniques"><g class="technique T1048" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Exfiltration</tspan><tspan x="4" y="17.934782608695652">Over Alternative</tspan><tspan x="4" y="27.89130434782609">Protocol</tspan></text></g><g class="technique T1567" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Exfiltration</tspan><tspan x="4" y="17.934782608695652">Over</tspan><tspan x="4" y="27.89130434782609">Web Service</tspan></text></g><g class="technique T1537" transform="translate(0, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Transfer</tspan><tspan x="4" y="17.934782608695652">Data to</tspan><tspan x="4" y="27.89130434782609">Cloud Account</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1567.004" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Exfiltration</tspan><tspan x="4" y="25.184782608695652">Over Webhook</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Exfiltration</tspan></text></g></g><g class="tactic impact" transform="translate(950.909090909091, 0)"><g class="techniques"><g class="technique T1531" transform="translate(0, 30.869565217391305)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Account</tspan><tspan x="4" y="25.184782608695652">Access Removal</tspan></text></g><g class="technique T1499" transform="translate(0, 61.73913043478261)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Endpoint Denial</tspan><tspan x="4" y="25.184782608695652">of Service</tspan></text></g><g class="technique T1657" transform="translate(0, 185.2173913043478)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,0" fill="#6B7279" visibility="hidden"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="11.684782608695652">Financial</tspan><tspan x="4" y="26.184782608695652">Theft</tspan></text></g><g class="technique T1498" transform="translate(0, 216.08695652173915)"><rect class="cell" height="30.869565217391305" width="95.0909090909091" fill="#ffffff" stroke="#6B7279"/><polygon class="sidebar" transform="translate(0, 30.869565217391305)" points="0,0 12,0 12,12" fill="#6B7279" visibility="visible"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Network Denial</tspan><tspan x="4" y="25.184782608695652">of Service</tspan></text></g></g><g class="subtechniques"><g class="subtechnique T1499.003" transform="translate(15, 92.6086956521739)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Application</tspan><tspan x="4" y="17.934782608695652">Exhaustion</tspan><tspan x="4" y="27.89130434782609">Flood</tspan></text></g><g class="subtechnique T1499.004" transform="translate(15, 123.47826086956522)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Application</tspan><tspan x="4" y="17.934782608695652">or System</tspan><tspan x="4" y="27.89130434782609">Exploitation</tspan></text></g><g class="subtechnique T1499.002" transform="translate(15, 154.34782608695653)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Service</tspan><tspan x="4" y="17.934782608695652">Exhaustion</tspan><tspan x="4" y="27.89130434782609">Flood</tspan></text></g><g class="subtechnique T1498.001" transform="translate(15, 246.95652173913044)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="7.978260869565218">Direct</tspan><tspan x="4" y="17.934782608695652">Network</tspan><tspan x="4" y="27.89130434782609">Flood</tspan></text></g><g class="subtechnique T1498.002" transform="translate(15, 277.82608695652175)"><rect class="cell" height="30.869565217391305" width="80.0909090909091" fill="#ffffff" stroke="#6B7279"/><rect class="cell" height="30.869565217391305" width="3" transform="translate(-3, 0)" fill="#6B7279" stroke="#6B7279"/><text font-size="7.015656565656565" fill="#000000"><tspan x="4" y="10.684782608695652">Reflection</tspan><tspan x="4" y="25.184782608695652">Amplification</tspan></text></g></g><g class="tactic-label"><text font-size="10.523484848484848" fill="black" font-weight="bold"><tspan text-anchor="middle" x="47.54545454545455" y="18.934782608695652">Impact</tspan></text></g></g></g></g></g></svg>