{"id":477573,"date":"2023-08-09T09:16:45","date_gmt":"2023-08-09T09:16:45","guid":{"rendered":""},"modified":"2023-09-05T11:14:59","modified_gmt":"2023-09-05T11:14:59","slug":"indicator-of-compromise-ioc","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/jp\/wiki\/indicator-of-compromise-ioc\/","title":{"rendered":"\u4fb5\u5bb3\u306e\u5146\u5019 (IOC)"},"content":{"rendered":"

\u4fb5\u5bb3\u306e\u5146\u5019 (IOC) \u3068\u306f\u3001\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u307e\u305f\u306f\u30aa\u30da\u30ec\u30fc\u30c6\u30a3\u30f3\u30b0 \u30b7\u30b9\u30c6\u30e0\u3067\u89b3\u5bdf\u3055\u308c\u3001\u9ad8\u3044\u78ba\u7387\u3067\u30b3\u30f3\u30d4\u30e5\u30fc\u30bf\u4fb5\u5165\u3092\u793a\u3059\u30a2\u30fc\u30c6\u30a3\u30d5\u30a1\u30af\u30c8\u3092\u6307\u3057\u307e\u3059\u3002\u3053\u308c\u3089\u306f\u3001\u65e2\u77e5\u306e\u60aa\u610f\u306e\u3042\u308b IP \u30a2\u30c9\u30ec\u30b9\u3001URL\u3001\u30c9\u30e1\u30a4\u30f3\u540d\u3001\u96fb\u5b50\u30e1\u30fc\u30eb \u30a2\u30c9\u30ec\u30b9\u3001\u30d5\u30a1\u30a4\u30eb \u30cf\u30c3\u30b7\u30e5\u3001\u307e\u305f\u306f\u30de\u30eb\u30a6\u30a7\u30a2\u306e\u52d5\u4f5c\u3084\u30b3\u30fc\u30c9 \u30b9\u30cb\u30da\u30c3\u30c8\u306a\u3069\u306e\u30de\u30eb\u30a6\u30a7\u30a2\u56fa\u6709\u306e\u5c5e\u6027\u306e\u5f62\u5f0f\u3067\u3042\u308b\u5834\u5408\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n

\u4fb5\u5bb3\u6307\u6a19 (IOC) \u306e\u9032\u5316<\/h2>\n

\u4fb5\u5bb3\u306e\u5146\u5019 (IOC) \u306e\u6982\u5ff5\u306f\u3001\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u696d\u754c\u306e\u9032\u5316\u306b\u305d\u306e\u30eb\u30fc\u30c4\u304c\u3042\u308a\u307e\u3059\u3002\u3053\u306e\u7528\u8a9e\u81ea\u4f53\u306f\u3001\u60c5\u5831\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u4f1a\u793e Mandiant \u304c\u30b5\u30a4\u30d0\u30fc\u8105\u5a01\u30a4\u30f3\u30c6\u30ea\u30b8\u30a7\u30f3\u30b9\u696d\u52d9\u306e\u4e00\u74b0\u3068\u3057\u3066 2013 \u5e74\u9803\u306b\u521d\u3081\u3066\u4f5c\u308a\u307e\u3057\u305f\u3002\u305d\u306e\u76ee\u7684\u306f\u3001\u5f93\u6765\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3088\u308a\u3082\u30d7\u30ed\u30a2\u30af\u30c6\u30a3\u30d6\u306b\u3001\u9ad8\u5ea6\u306a\u30b5\u30a4\u30d0\u30fc\u8105\u5a01\u3092\u8b58\u5225\u3001\u8ffd\u8de1\u3001\u5bfe\u5fdc\u3059\u308b\u3053\u3068\u3067\u3057\u305f\u3002<\/p>\n

\u521d\u671f\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u306f\u3001\u8106\u5f31\u6027\u304c\u60aa\u7528\u3055\u308c\u305f\u5f8c\u306b\u30b7\u30b9\u30c6\u30e0\u306b\u30d1\u30c3\u30c1\u3092\u9069\u7528\u3059\u308b\u3068\u3044\u3046\u3001\u4e8b\u5f8c\u5bfe\u5fdc\u7684\u306a\u5bfe\u7b56\u304c\u4e00\u822c\u7684\u3067\u3057\u305f\u3002\u3057\u304b\u3057\u3001\u30b5\u30a4\u30d0\u30fc\u8105\u5a01\u304c\u9ad8\u5ea6\u5316\u3059\u308b\u306b\u3064\u308c\u3066\u3001\u3053\u308c\u3089\u306e\u5bfe\u7b56\u3067\u306f\u4e0d\u5341\u5206\u3067\u3042\u308b\u3053\u3068\u304c\u5224\u660e\u3057\u3001\u3088\u308a\u7a4d\u6975\u7684\u306a\u30a2\u30d7\u30ed\u30fc\u30c1\u304c\u5fc5\u8981\u306b\u306a\u308a\u307e\u3057\u305f\u3002\u3053\u308c\u304c IOC \u306e\u958b\u767a\u306b\u3064\u306a\u304c\u308a\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 \u30c1\u30fc\u30e0\u306f\u6f5c\u5728\u7684\u306a\u8105\u5a01\u304c\u88ab\u5bb3\u3092\u3082\u305f\u3089\u3059\u524d\u306b\u305d\u308c\u3092\u691c\u51fa\u3067\u304d\u308b\u3088\u3046\u306b\u306a\u308a\u307e\u3057\u305f\u3002<\/p>\n

\u4fb5\u5bb3\u6307\u6a19 (IOC) \u3092\u7406\u89e3\u3059\u308b<\/h2>\n

\u4fb5\u5bb3\u306e\u5146\u5019 (IOC) \u306f\u3001\u30b7\u30b9\u30c6\u30e0\u307e\u305f\u306f\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u5185\u306e\u60aa\u610f\u306e\u3042\u308b\u30a2\u30af\u30c6\u30a3\u30d3\u30c6\u30a3\u3092\u8b58\u5225\u3059\u308b\u306e\u306b\u5f79\u7acb\u3064\u30d5\u30a9\u30ec\u30f3\u30b8\u30c3\u30af \u30de\u30fc\u30ab\u30fc\u3068\u3057\u3066\u6a5f\u80fd\u3057\u307e\u3059\u3002IOC \u306f\u3001\u30b5\u30a4\u30d0\u30fc \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u5c02\u9580\u5bb6\u304c\u8105\u5a01\u3092\u65e9\u671f\u306b\u691c\u51fa\u3059\u308b\u306e\u306b\u5f79\u7acb\u3061\u3001\u8105\u5a01\u306b\u8fc5\u901f\u306b\u5bfe\u5fdc\u3059\u308b\u3053\u3068\u3067\u6f5c\u5728\u7684\u306a\u640d\u5bb3\u3092\u8efd\u6e1b\u3067\u304d\u308b\u3088\u3046\u306b\u3057\u307e\u3059\u3002<\/p>\n

IOC \u306f\u3001\u516c\u958b\u30ec\u30dd\u30fc\u30c8\u3001\u30a4\u30f3\u30b7\u30c7\u30f3\u30c8\u5bfe\u5fdc\u6d3b\u52d5\u3001\u304a\u3088\u3073\u5b9a\u671f\u7684\u306a\u30ed\u30b0\u5206\u6790\u304b\u3089\u751f\u6210\u3055\u308c\u307e\u3059\u3002IOC \u304c\u7279\u5b9a\u3055\u308c\u308b\u3068\u3001\u591a\u304f\u306e\u5834\u5408\u306f\u8105\u5a01\u30a4\u30f3\u30c6\u30ea\u30b8\u30a7\u30f3\u30b9 \u30d5\u30a3\u30fc\u30c9\u3092\u901a\u3058\u3066\u3001\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 \u30b3\u30df\u30e5\u30cb\u30c6\u30a3\u5185\u3067\u5171\u6709\u3055\u308c\u307e\u3059\u3002IOC \u3092\u5171\u6709\u3059\u308b\u3053\u3068\u3067\u3001\u7d44\u7e54\u306f\u65e2\u77e5\u306e\u8105\u5a01\u304b\u3089\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3092\u4fdd\u8b77\u3057\u3001\u7279\u5b9a\u3055\u308c\u305f IOC \u306b\u95a2\u9023\u3059\u308b\u30cd\u30c3\u30c8\u30ef\u30fc\u30af \u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u30d6\u30ed\u30c3\u30af\u307e\u305f\u306f\u76e3\u8996\u3067\u304d\u308b\u3088\u3046\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n

\u4fb5\u5bb3\u6307\u6a19 (IOC) \u306e\u6a5f\u80fd<\/h2>\n

\u4fb5\u5bb3\u306e\u5146\u5019 (IOC) \u306e\u4e2d\u5fc3\u7684\u306a\u6a5f\u80fd\u306f\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 \u30a4\u30f3\u30b7\u30c7\u30f3\u30c8\u306b\u3064\u306a\u304c\u308b\u53ef\u80fd\u6027\u306e\u3042\u308b\u7591\u308f\u3057\u3044\u30a2\u30af\u30c6\u30a3\u30d3\u30c6\u30a3\u306e\u5146\u5019\u3068\u3057\u3066\u6a5f\u80fd\u3059\u308b\u3053\u3068\u3067\u3059\u3002\u3053\u308c\u306f\u3001\u30c7\u30fc\u30bf\u306e\u5206\u6790\u3068\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u4fb5\u5bb3\u307e\u305f\u306f\u4fb5\u5bb3\u306e\u8a66\u307f\u3092\u793a\u3059\u53ef\u80fd\u6027\u306e\u3042\u308b\u30d1\u30bf\u30fc\u30f3\u306e\u8b58\u5225\u306b\u3088\u3063\u3066\u5b9f\u73fe\u3055\u308c\u307e\u3059\u3002<\/p>\n

\u305f\u3068\u3048\u3070\u3001IOC \u304c\u7279\u5b9a\u306e IP \u30a2\u30c9\u30ec\u30b9\u3092\u60aa\u610f\u306e\u3042\u308b\u30a2\u30af\u30c6\u30a3\u30d3\u30c6\u30a3\u306e\u30bd\u30fc\u30b9\u3068\u3057\u3066\u7279\u5b9a\u3057\u305f\u5834\u5408\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 \u30c4\u30fc\u30eb\u3092\u8a2d\u5b9a\u3057\u3066\u3053\u306e IP \u304b\u3089\u306e\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u30d6\u30ed\u30c3\u30af\u3057\u3001\u305d\u306e\u30bd\u30fc\u30b9\u304b\u3089\u306e\u6f5c\u5728\u7684\u306a\u4fb5\u5bb3\u3092\u9632\u3050\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002<\/p>\n

\u4fb5\u5bb3\u6307\u6a19 (IOC) \u306e\u4e3b\u306a\u7279\u5fb4<\/h2>\n

IOC \u306e\u4e3b\u306a\u7279\u5fb4\u306f\u6b21\u306e\u3068\u304a\u308a\u3067\u3059\u3002<\/p>\n

    \n
  1. \u9069\u6642\u6027<\/strong>IOC \u306f\u3001\u6f5c\u5728\u7684\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u8105\u5a01\u306b\u95a2\u3059\u308b\u30ea\u30a2\u30eb\u30bf\u30a4\u30e0\u307e\u305f\u306f\u307b\u307c\u30ea\u30a2\u30eb\u30bf\u30a4\u30e0\u306e\u30a2\u30e9\u30fc\u30c8\u3092\u63d0\u4f9b\u3057\u307e\u3059\u3002<\/li>\n
  2. \u5b9f\u884c\u53ef\u80fd\u6027<\/strong>\u5404 IOC \u306f\u3001\u8105\u5a01\u3092\u9632\u6b62\u307e\u305f\u306f\u8efd\u6e1b\u3059\u308b\u305f\u3081\u306b\u5b9f\u884c\u3067\u304d\u308b\u7279\u5b9a\u306e\u30c7\u30fc\u30bf\u3092\u63d0\u4f9b\u3057\u307e\u3059\u3002<\/li>\n
  3. \u7279\u7570\u6027<\/strong>IOC \u306f\u3001\u7279\u5b9a\u306e\u30de\u30eb\u30a6\u30a7\u30a2\u306e\u4e9c\u7a2e\u3084\u65e2\u77e5\u306e\u60aa\u610f\u306e\u3042\u308b IP \u306a\u3069\u3001\u975e\u5e38\u306b\u5177\u4f53\u7684\u306a\u8105\u5a01\u3092\u6307\u3059\u3053\u3068\u304c\u3088\u304f\u3042\u308a\u307e\u3059\u3002<\/li>\n
  4. \u5171\u6709\u53ef\u80fd\u6027<\/strong>IOC \u306f\u901a\u5e38\u3001\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 \u30b3\u30df\u30e5\u30cb\u30c6\u30a3\u9593\u3067\u5171\u6709\u3055\u308c\u3001\u4ed6\u306e\u30e6\u30fc\u30b6\u30fc\u304c\u72ec\u81ea\u306e\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3092\u4fdd\u8b77\u3067\u304d\u308b\u3088\u3046\u306b\u3057\u307e\u3059\u3002<\/li>\n
  5. \u30b9\u30b1\u30fc\u30e9\u30d3\u30ea\u30c6\u30a3<\/strong>IOC \u306f\u3055\u307e\u3056\u307e\u306a\u74b0\u5883\u3084\u30b7\u30b9\u30c6\u30e0\u3067\u4f7f\u7528\u3067\u304d\u308b\u305f\u3081\u3001\u8105\u5a01\u306e\u691c\u51fa\u7bc4\u56f2\u304c\u5e83\u304f\u306a\u308a\u307e\u3059\u3002<\/li>\n<\/ol>\n

    \u4fb5\u5bb3\u306e\u5146\u5019 (IOC) \u306e\u7a2e\u985e<\/h2>\n

    IOC \u306f\u5927\u304d\u304f\u5206\u3051\u3066 3 \u3064\u306e\u30bf\u30a4\u30d7\u306b\u5206\u985e\u3067\u304d\u307e\u3059\u3002<\/p>\n

      \n
    1. \n

      \u539f\u5b50IOC<\/strong>: \u3053\u308c\u3089\u306f\u3001\u305d\u308c\u4ee5\u4e0a\u7d30\u5206\u5316\u3067\u304d\u306a\u3044\u5358\u7d14\u3067\u4e0d\u53ef\u5206\u306a IOC \u3067\u3059\u3002\u4f8b\u3068\u3057\u3066\u306f\u3001IP \u30a2\u30c9\u30ec\u30b9\u3001\u30c9\u30e1\u30a4\u30f3\u540d\u3001URL \u306a\u3069\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<\/li>\n

    2. \n

      \u8a08\u7b97IOC<\/strong>: \u3053\u308c\u3089\u306f\u3001\u7406\u89e3\u3059\u308b\u305f\u3081\u306b\u51e6\u7406\u3084\u8a08\u7b97\u3092\u5fc5\u8981\u3068\u3059\u308b\u3001\u3088\u308a\u8907\u96d1\u306a IOC \u3067\u3059\u3002\u4f8b\u3068\u3057\u3066\u306f\u3001\u30d5\u30a1\u30a4\u30eb \u30cf\u30c3\u30b7\u30e5\u3084\u96fb\u5b50\u30e1\u30fc\u30eb\u306e\u6dfb\u4ed8\u30d5\u30a1\u30a4\u30eb\u306a\u3069\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<\/li>\n

    3. \n

      \u884c\u52d5\u7684IOC<\/strong>: \u3053\u308c\u3089\u306e IOC \u306f\u3001\u8105\u5a01\u304c\u793a\u3059\u52d5\u4f5c\u306b\u57fa\u3065\u3044\u3066\u8b58\u5225\u3055\u308c\u307e\u3059\u3002\u4f8b\u3068\u3057\u3066\u306f\u3001\u30ec\u30b8\u30b9\u30c8\u30ea \u30ad\u30fc\u306e\u5909\u66f4\u3001\u30d5\u30a1\u30a4\u30eb\u306e\u5909\u66f4\u3001\u30cd\u30c3\u30c8\u30ef\u30fc\u30af \u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u306e\u7570\u5e38\u306a\u3069\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<\/li>\n<\/ol>\n\n\n\n\n\n\n\n
      IOC\u306e\u7a2e\u985e<\/th>\n\u4f8b<\/th>\n<\/tr>\n<\/thead>\n
      \u539f\u5b50IOC<\/td>\nIP\u30a2\u30c9\u30ec\u30b9\u3001\u30c9\u30e1\u30a4\u30f3\u540d\u3001URL<\/td>\n<\/tr>\n
      \u8a08\u7b97IOC<\/td>\n\u30d5\u30a1\u30a4\u30eb\u30cf\u30c3\u30b7\u30e5\u3001\u30e1\u30fc\u30eb\u6dfb\u4ed8\u30d5\u30a1\u30a4\u30eb<\/td>\n<\/tr>\n
      \u884c\u52d5\u7684IOC<\/td>\n\u30ec\u30b8\u30b9\u30c8\u30ea\u30ad\u30fc\u306e\u5909\u66f4\u3001\u30d5\u30a1\u30a4\u30eb\u306e\u5909\u66f4\u3001\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u306e\u7570\u5e38<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

      \u4fb5\u5bb3\u6307\u6a19 (IOC) \u306e\u4f7f\u7528: \u8ab2\u984c\u3068\u89e3\u6c7a\u7b56<\/h2>\n

      IOC \u306f\u8105\u5a01\u306e\u691c\u51fa\u3068\u8efd\u6e1b\u306b\u4e0d\u53ef\u6b20\u306a\u30c4\u30fc\u30eb\u3067\u3059\u304c\u3001\u8ab2\u984c\u3082\u3042\u308a\u307e\u3059\u3002\u305f\u3068\u3048\u3070\u3001\u7121\u5bb3\u306a\u30a2\u30af\u30c6\u30a3\u30d3\u30c6\u30a3\u304c\u7279\u5b9a\u3055\u308c\u305f IOC \u3068\u4e00\u81f4\u3059\u308b\u3068\u3001IOC \u306f\u8aa4\u691c\u77e5\u3092\u751f\u6210\u3059\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u3055\u3089\u306b\u3001IOC \u306e\u6570\u304c\u81a8\u5927\u306b\u306a\u308b\u3068\u3001\u7ba1\u7406\u3068\u512a\u5148\u9806\u4f4d\u4ed8\u3051\u304c\u96e3\u3057\u304f\u306a\u308b\u5834\u5408\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n

      \u3053\u308c\u3089\u306e\u8ab2\u984c\u3092\u514b\u670d\u3059\u308b\u305f\u3081\u306b\u3001\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u5c02\u9580\u5bb6\u306f\u6b21\u306e\u3088\u3046\u306a\u30bd\u30ea\u30e5\u30fc\u30b7\u30e7\u30f3\u3092\u63a1\u7528\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n

        \n
      1. \u8105\u5a01\u30a4\u30f3\u30c6\u30ea\u30b8\u30a7\u30f3\u30b9\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0<\/strong>\u3053\u308c\u3089\u306e\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u306f\u3001IOC \u3092\u53ce\u96c6\u3001\u7ba1\u7406\u3001\u76f8\u95a2\u4ed8\u3051\u3059\u308b\u3053\u3068\u3067\u3001\u5927\u91cf\u306e\u51e6\u7406\u3092\u5bb9\u6613\u306b\u3057\u3001\u8aa4\u691c\u77e5\u3092\u56de\u907f\u3057\u307e\u3059\u3002<\/li>\n
      2. \u512a\u5148\u9806\u4f4d<\/strong>\u3059\u3079\u3066\u306e IOC \u304c\u540c\u3058\u3068\u3044\u3046\u308f\u3051\u3067\u306f\u3042\u308a\u307e\u305b\u3093\u3002\u4e00\u90e8\u306e IOC \u306f\u4ed6\u306e IOC \u3088\u308a\u3082\u5927\u304d\u306a\u8105\u5a01\u3092\u3082\u305f\u3089\u3057\u307e\u3059\u3002\u91cd\u5927\u5ea6\u306b\u57fa\u3065\u3044\u3066 IOC \u306b\u512a\u5148\u9806\u4f4d\u3092\u4ed8\u3051\u308b\u3053\u3068\u306b\u3088\u308a\u3001\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 \u30c1\u30fc\u30e0\u306f\u6700\u3082\u91cd\u8981\u306a\u8105\u5a01\u306b\u6700\u521d\u306b\u96c6\u4e2d\u3059\u308b\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002<\/li>\n<\/ol>\n

        \u4fb5\u5bb3\u6307\u6a19 (IOC) \u3068\u985e\u4f3c\u6982\u5ff5<\/h2>\n\n\n\n\n\n\n
        \u30b3\u30f3\u30bb\u30d7\u30c8<\/th>\n\u8aac\u660e<\/th>\nIOC\u3068\u306e\u6bd4\u8f03<\/th>\n<\/tr>\n<\/thead>\n
        \u653b\u6483\u306e\u5146\u5019 (IOA)<\/td>\n\u4e00\u822c\u7684\u3067\u306a\u3044\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u30d7\u30ed\u30c8\u30b3\u30eb\u306a\u3069\u306e\u30a2\u30af\u30c6\u30a3\u30d6\u306a\u653b\u6483\u306e\u5146\u5019<\/td>\nIOC\u306f\u4fb5\u5bb3\u306e\u5146\u5019\u3092\u7279\u5b9a\u3057\u3001IOA\u306f\u9032\u884c\u4e2d\u306e\u653b\u6483\u306e\u5146\u5019\u3092\u7279\u5b9a\u3057\u307e\u3059\u3002<\/td>\n<\/tr>\n
        TTP\uff08\u6226\u8853\u3001\u6280\u8853\u3001\u624b\u9806\uff09<\/td>\n\u8105\u5a01\u30a2\u30af\u30bf\u30fc\u306e\u884c\u52d5\u3001\u653b\u6483\u306e\u8a08\u753b\u3001\u5b9f\u884c\u3001\u7ba1\u7406\u65b9\u6cd5\u306a\u3069<\/td>\nTTP\u306f\u653b\u6483\u306e\u3088\u308a\u5e83\u3044\u5168\u4f53\u50cf\u3092\u63d0\u4f9b\u3059\u308b\u306e\u306b\u5bfe\u3057\u3001IOC\u306f\u653b\u6483\u306e\u7279\u5b9a\u306e\u8981\u7d20\u306b\u7126\u70b9\u3092\u5f53\u3066\u3066\u3044\u307e\u3059\u3002<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

        \u4fb5\u5bb3\u6307\u6a19\uff08IOC\uff09\u306b\u95a2\u3059\u308b\u4eca\u5f8c\u306e\u5c55\u671b\u3068\u6280\u8853<\/h2>\n

        \u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u304c\u9032\u5316\u3059\u308b\u306b\u3064\u308c\u3001IOC \u306e\u6982\u5ff5\u3068\u4f7f\u7528\u6cd5\u3082\u9032\u5316\u3057\u307e\u3059\u3002\u9ad8\u5ea6\u306a\u6a5f\u68b0\u5b66\u7fd2\u3068 AI \u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306f\u3001IOC \u306e\u691c\u51fa\u3001\u5206\u6790\u3001\u5bfe\u5fdc\u3092\u5f37\u5316\u3059\u308b\u4e0a\u3067\u91cd\u8981\u306a\u5f79\u5272\u3092\u679c\u305f\u3059\u3053\u3068\u304c\u671f\u5f85\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u3089\u306e\u30c6\u30af\u30ce\u30ed\u30b8\u30fc\u306f\u3001\u65b0\u3057\u3044\u30d1\u30bf\u30fc\u30f3\u3001\u76f8\u95a2\u95a2\u4fc2\u3001IOC \u3092\u7279\u5b9a\u3057\u3001\u8105\u5a01\u306e\u691c\u51fa\u3092\u3088\u308a\u30d7\u30ed\u30a2\u30af\u30c6\u30a3\u30d6\u304b\u3064\u4e88\u6e2c\u7684\u306b\u3059\u308b\u306e\u306b\u5f79\u7acb\u3064\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n

        \u3055\u3089\u306b\u3001\u8105\u5a01\u304c\u9ad8\u5ea6\u5316\u3059\u308b\u306b\u3064\u308c\u3066\u3001\u884c\u52d5 IOC \u306e\u91cd\u8981\u6027\u306f\u3055\u3089\u306b\u9ad8\u307e\u308a\u307e\u3059\u3002\u653b\u6483\u8005\u304c IOC \u3092\u96a0\u3059\u3053\u3068\u304c\u3088\u308a\u56f0\u96e3\u306b\u306a\u308b\u3053\u3068\u304c\u591a\u304f\u3001\u9ad8\u5ea6\u306a\u591a\u6bb5\u968e\u653b\u6483\u306e\u5146\u5019\u3092\u793a\u3059\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n

        \u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u3068\u4fb5\u5bb3\u306e\u5146\u5019 (IOC)<\/h2>\n

        \u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u306f\u3001IOC \u306b\u95a2\u3057\u3066\u91cd\u8981\u306a\u5f79\u5272\u3092\u679c\u305f\u3057\u307e\u3059\u3002\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u306f\u3001\u901a\u904e\u3059\u308b\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u76e3\u8996\u304a\u3088\u3073\u5206\u6790\u3059\u308b\u3053\u3068\u3067\u3001\u6f5c\u5728\u7684\u306a IOC \u3092\u7279\u5b9a\u3057\u3001\u8105\u5a01\u3092\u9632\u6b62\u3067\u304d\u307e\u3059\u3002\u7279\u5b9a\u306e IP \u30a2\u30c9\u30ec\u30b9\u304b\u3089\u60aa\u610f\u306e\u3042\u308b\u30a2\u30af\u30c6\u30a3\u30d3\u30c6\u30a3\u304c\u767a\u751f\u3057\u305f\u5834\u5408\u3001\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u306f\u305d\u306e\u30bd\u30fc\u30b9\u304b\u3089\u306e\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u30d6\u30ed\u30c3\u30af\u3057\u3066\u3001\u6f5c\u5728\u7684\u306a\u8105\u5a01\u3092\u8efd\u6e1b\u3067\u304d\u307e\u3059\u3002<\/p>\n

        \u3055\u3089\u306b\u3001\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u306f\u30cd\u30c3\u30c8\u30ef\u30fc\u30af \u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u306e\u533f\u540d\u5316\u306b\u3082\u5f79\u7acb\u3061\u3001\u6f5c\u5728\u7684\u306a\u653b\u6483\u5bfe\u8c61\u9818\u57df\u3092\u6e1b\u3089\u3057\u3001\u30b5\u30a4\u30d0\u30fc\u72af\u7f6a\u8005\u304c\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u5185\u306e\u6f5c\u5728\u7684\u306a\u30bf\u30fc\u30b2\u30c3\u30c8\u3092\u7279\u5b9a\u3059\u308b\u3053\u3068\u3092\u56f0\u96e3\u306b\u3057\u307e\u3059\u3002<\/p>\n

        \u95a2\u9023\u30ea\u30f3\u30af<\/h2>\n
          \n
        1. Mitre ATT&CK \u30d5\u30ec\u30fc\u30e0\u30ef\u30fc\u30af<\/a><\/li>\n
        2. \u4fb5\u5bb3\u306e\u5146\u5019 (IOC) \u2013 Wikipedia<\/a><\/li>\n
        3. \u8105\u5a01\u30a4\u30f3\u30c6\u30ea\u30b8\u30a7\u30f3\u30b9\u30d5\u30a3\u30fc\u30c9<\/a><\/li>\n
        4. SANS \u30c7\u30b8\u30bf\u30eb\u30d5\u30a9\u30ec\u30f3\u30b8\u30c3\u30af\u3068\u30a4\u30f3\u30b7\u30c7\u30f3\u30c8\u5bfe\u5fdc<\/a><\/li>\n
        5. \u30b7\u30b9\u30b3\u306e\u4fb5\u5bb3\u6307\u6a19\u30ac\u30a4\u30c9<\/a><\/li>\n<\/ol>","protected":false},"featured_media":468615,"menu_order":0,"template":"","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"class_list":["post-477573","wiki","type-wiki","status-publish","has-post-thumbnail","hentry"],"acf":{"faq_title":"Frequently Asked Questions about Indicator of Compromise (IOC): An In-depth Guide<\/mark>","faq_items":[{"question":"What is an Indicator of Compromise (IOC)?","answer":"

          An Indicator of Compromise (IOC) is an artifact observed on a network or in an operating system that strongly indicates a computer intrusion. These could be in the form of known malicious IP addresses, URLs, domain names, email addresses, file hashes, or even unique attributes of a malware, such as its behavior or code snippets.<\/p>"},{"question":"Who first introduced the concept of Indicator of Compromise (IOC)?","answer":"

          The concept of Indicator of Compromise (IOC) was first introduced by the information security firm Mandiant around 2013 as part of their cyber threat intelligence operations.<\/p>"},{"question":"What are the key features of an Indicator of Compromise (IOC)?","answer":"

          The key features of an IOC include timeliness, actionability, specificity, shareability, and scalability. These characteristics make IOCs a powerful tool for early threat detection and response in cybersecurity.<\/p>"},{"question":"How are Indicators of Compromise (IOCs) classified?","answer":"

          IOCs are typically classified into three types: Atomic IOCs (like IP addresses, domain names, URLs), Computational IOCs (like file hashes or email attachments), and Behavioral IOCs (like registry key changes, file modification, or network traffic anomalies).<\/p>"},{"question":"What challenges are associated with the use of IOCs and how can they be mitigated?","answer":"

          While IOCs are a critical tool in threat detection, they can generate false positives and can be challenging to manage due to their volume. To mitigate these challenges, cybersecurity professionals employ threat intelligence platforms and prioritize IOCs based on their severity.<\/p>"},{"question":"What is the future perspective of IOCs in cybersecurity?","answer":"

          As cybersecurity evolves, advanced machine learning and AI algorithms are expected to enhance IOC detection, analysis, and response. Behavioral IOCs, which provide indications of advanced, multi-stage attacks, will become increasingly important.<\/p>"},{"question":"How are proxy servers associated with IOCs?","answer":"

          Proxy servers can monitor and analyze traffic to identify potential IOCs and prevent threats. They can block traffic from malicious sources, mitigating potential threats. Additionally, they can help anonymize network traffic, reducing the potential attack surface.<\/p>"}]},"_links":{"self":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki\/477573","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki"}],"about":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/types\/wiki"}],"version-history":[{"count":0,"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki\/477573\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/media\/468615"}],"wp:attachment":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/media?parent=477573"}],"curies":[{"name":"\u3046\u30fc\u3093","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}