| ID | Name |
|---|---|
| ATAGS-T1127.001 | Local Account |
| ATAGS-T1127.002 | Domain Account |
| ATAGS-T1127.003 | Email Account |
| ATAGS-T1127.004 | Cloud Account |
Threat Actors may attempt to get a listing of domain accounts. This information can help Threat Actors determine which domain accounts exist to aid in follow-on behavior such as targeting specific accounts which possess particular privileges.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.