Native API (T1575)

View on ATT&CK

In Playbook

Technique & Subtechniques

  • Native API

Associated Tactics

  • Defense Evasion
  • Execution

Defense Evasion (TA0030)

The adversary is trying to avoid being detected. Defense evasion consists of techniques an adversary may use to evade detection or avoid other defenses. Sometimes these actions are the same as or variations of techniques in other categories that have the added benefit of subverting a particular defense or mitigation. Defense evasion may be considered a set of attributes the adversary applies to all other phases of the operation.

View on ATT&CK

Procedure Examples

Description Source(s)
Google. (2019, December 27). Getting Started with the NDK. Retrieved April 28, 2020. Google NDK Getting Started
M. Peck, C. Northern. (2016, August 22). Analyzing the Effectiveness of App Vetting Tools in the Enterprise. Retrieved April 28, 2020. MITRE App Vetting Effectiveness