Application Server

Application servers are used across many different sectors to host various diverse software applications necessary to supporting the ICS. Example functions can include data analytics and reporting, alarm management, and the management/coordination of different control servers. The application server typically runs on a modern server operating system (e.g., MS Windows Server).

ID: A0008

ⓘ

Platforms: Linux, Windows

Sectors: General

Version: 1.0

Created: 28 September 2023

Last Modified: 04 October 2023

Version Permalink

Live Version

Techniques

Domain	ID	Name
ICS	T0830	Adversary-in-the-Middle
ICS	T0895	Autorun Image
ICS	T0892	Change Credential
ICS	T0807	Command-Line Interface
ICS	T0885	Commonly Used Port
ICS	T0884	Connection Proxy
ICS	T0809	Data Destruction
ICS	T0893	Data from Local System
ICS	T0812	Default Credentials
ICS	T0816	Device Restart/Shutdown
ICS	T0819	Exploit Public-Facing Application
ICS	T0820	Exploitation for Evasion
ICS	T0890	Exploitation for Privilege Escalation
ICS	T0866	Exploitation of Remote Services
ICS	T0822	External Remote Services
ICS	T0823	Graphical User Interface
ICS	T0874	Hooking
ICS	T0872	Indicator Removal on Host
ICS	T0883	Internet Accessible Device
ICS	T0867	Lateral Tool Transfer
ICS	T0849	Masquerading
ICS	T0834	Native API
ICS	T0840	Network Connection Enumeration
ICS	T0842	Network Sniffing
ICS	T0886	Remote Services
ICS	T0846	Remote System Discovery
ICS	T0888	Remote System Information Discovery
ICS	T0847	Replication Through Removable Media
ICS	T0851	Rootkit
ICS	T0853	Scripting
ICS	T0881	Service Stop
ICS	T0869	Standard Application Layer Protocol
ICS	T0862	Supply Chain Compromise
ICS	T0894	System Binary Proxy Execution
ICS	T0859	Valid Accounts

Application Server

ICS Layer

Techniques