Enum: ActionNameEnum
URI: ActionNameEnum
Permissible Values
| Value | Meaning | Description |
|---|---|---|
| Accept Socket Connection | None | |
| Add Connection to Network Share | None | |
| Add Network Share | None | |
| Add Scheduled Task | None | |
| Add System Call Hook | None | |
| Add User | None | |
| Add Windows Hook | None | |
| Allocate Virtual Memory in Process | None | |
| Bind Address to Socket | None | |
| Change Service Configuration | None | |
| Check for Remote Debugger | None | |
| Close Port | None | |
| Close Registry Key | None | |
| Close Socket | None | |
| Configure Service | None | |
| Connect to IP | None | |
| Connect to Named Pipe | None | |
| Connect to Network Share | None | |
| Connect to Socket | None | |
| Connect to URL | None | |
| Control Driver | None | |
| Control Service | None | |
| Copy File | None | |
| Create Dialog Box | None | |
| Create Directory | None | |
| Create Event | None | |
| Create File | None | |
| Create File Alternate Data Stream | None | |
| Create File Mapping | None | |
| Create File Symbolic Link | None | |
| Create Hidden File | None | |
| Create Mailslot | None | |
| Create Module | None | |
| Create Mutex | None | |
| Create Named Pipe | None | |
| Create Process | None | |
| Create Process as User | None | |
| Create Registry Key | None | |
| Create Registry Key Value | None | |
| Create Remote Thread in Process | None | |
| Create Service | None | |
| Create Socket | None | |
| Create Symbolic Link | None | |
| Create Thread | None | |
| Create Window | None | |
| Delete Directory | None | |
| Delete File | None | |
| Delete Named Pipe | None | |
| Delete Network Share | None | |
| Delete Registry Key | None | |
| Delete Registry Key Value | None | |
| Delete Service | None | |
| Delete User | None | |
| Disconnect from Named Pipe | None | |
| Disconnect from Network Share | None | |
| Disconnect from Socket | None | |
| Download File | None | |
| Enumerate DLLs | None | |
| Enumerate Network Shares | None | |
| Enumerate Processes | None | |
| Enumerate Protocols | None | |
| Enumerate Registry Key Subkeys | None | |
| Enumerate Registry Key Values | None | |
| Enumerate Services | None | |
| Enumerate System Handles | None | |
| Enumerate Threads | None | |
| Enumerate Threads in Process | None | |
| Enumerate Users | None | |
| Enumerate Windows | None | |
| Find File | None | |
| Find Window | None | |
| Flush Process Instruction Cache | None | |
| Free Library | None | |
| Free Process Virtual Memory | None | |
| Get Disk Free Space | None | |
| Get Disk Type | None | |
| Get Elapsed System Up Time | None | |
| Get File Attributes | None | |
| Get Function Address | None | |
| Get Host By Address | None | |
| Get Host By Name | None | |
| Get Host Name | None | |
| Get Library File Name | None | |
| Get Library Handle | None | |
| Get NetBIOS Name | None | |
| Get Process Current Directory | None | |
| Get Process Environment Variable | None | |
| Get Process Startup Information | None | |
| Get Processes Snapshot | None | |
| Get Registry Key Attributes | None | |
| Get Service Status | None | |
| Get System Global Flags | None | |
| Get System Host Name | None | |
| Get System Local Time | None | |
| Get System NetBIOS Name | None | |
| Get System Network Parameters | None | |
| Get System Time | None | |
| Get Thread Context | None | |
| Get Thread Username | None | |
| Get User Attributes | None | |
| Get Username | None | |
| Get Windows Directory | None | |
| Get Windows System Directory | None | |
| Get Windows Temporary Files Directory | None | |
| Hide Window | None | |
| Impersonate Process | None | |
| Impersonate Thread | None | |
| Inject Memory Page | None | |
| Kill Process | None | |
| Kill Thread | None | |
| Kill Window | None | |
| Listen on Port | None | |
| Listen on Socket | None | |
| Load Driver | None | |
| Load Library | None | |
| Load Module | None | |
| Load and Call Driver | None | |
| Lock File | None | |
| Logon as User | None | |
| Map File | None | |
| Map Library | None | |
| Map View of File | None | |
| Modify File | None | |
| Modify Named Pipe | None | |
| Modify Process | None | |
| Modify Registry Key | None | |
| Modify Registry Key Value | None | |
| Modify Service | None | |
| Monitor Registry Key | None | |
| Move File | None | |
| Open File | None | |
| Open File Mapping | None | |
| Open Mutex | None | |
| Open Port | None | |
| Open Process | None | |
| Open Registry Key | None | |
| Open Service | None | |
| Open Service Control Manager | None | |
| Protect Virtual Memory | None | |
| Query DNS | None | |
| Query Disk Attributes | None | |
| Query Process Virtual Memory | None | |
| Queue APC in Thread | None | |
| Read File | None | |
| Read From Named Pipe | None | |
| Read From Process Memory | None | |
| Read Registry Key Value | None | |
| Receive Data on Socket | None | |
| Receive Email Message | None | |
| Release Mutex | None | |
| Rename File | None | |
| Revert Thread to Self | None | |
| Send Control Code to File | None | |
| Send Control Code to Pipe | None | |
| Send Control Code to Service | None | |
| Send DNS Query | None | |
| Send Data on Socket | None | |
| Send Data to Address on Socket | None | |
| Send Email Message | None | |
| Send ICMP Request | None | |
| Send Reverse DNS Query | None | |
| Set File Attributes | None | |
| Set NetBIOS Name | None | |
| Set Process Current Directory | None | |
| Set Process Environment Variable | None | |
| Set System Global Flags | None | |
| Set System Host Name | None | |
| Set System Time | None | |
| Set Thread Context | None | |
| Show Window | None | |
| Shutdown System | None | |
| Sleep Process | None | |
| Sleep System | None | |
| Start Service | None | |
| Unload Driver | None | |
| Unload Module | None | |
| Unlock File | None | |
| Unmap File | None | |
| Upload File | None | |
| Write to File | None | |
| Write to Process Virtual Memory | None |
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/uco-master
LinkML Source
name: ActionNameEnum
from_schema: https://w3id.org/lmodel/uco-master
rank: 1000
permissible_values:
Accept Socket Connection:
text: Accept Socket Connection
Add Connection to Network Share:
text: Add Connection to Network Share
Add Network Share:
text: Add Network Share
Add Scheduled Task:
text: Add Scheduled Task
Add System Call Hook:
text: Add System Call Hook
Add User:
text: Add User
Add Windows Hook:
text: Add Windows Hook
Allocate Virtual Memory in Process:
text: Allocate Virtual Memory in Process
Bind Address to Socket:
text: Bind Address to Socket
Change Service Configuration:
text: Change Service Configuration
Check for Remote Debugger:
text: Check for Remote Debugger
Close Port:
text: Close Port
Close Registry Key:
text: Close Registry Key
Close Socket:
text: Close Socket
Configure Service:
text: Configure Service
Connect to IP:
text: Connect to IP
Connect to Named Pipe:
text: Connect to Named Pipe
Connect to Network Share:
text: Connect to Network Share
Connect to Socket:
text: Connect to Socket
Connect to URL:
text: Connect to URL
Control Driver:
text: Control Driver
Control Service:
text: Control Service
Copy File:
text: Copy File
Create Dialog Box:
text: Create Dialog Box
Create Directory:
text: Create Directory
Create Event:
text: Create Event
Create File:
text: Create File
Create File Alternate Data Stream:
text: Create File Alternate Data Stream
Create File Mapping:
text: Create File Mapping
Create File Symbolic Link:
text: Create File Symbolic Link
Create Hidden File:
text: Create Hidden File
Create Mailslot:
text: Create Mailslot
Create Module:
text: Create Module
Create Mutex:
text: Create Mutex
Create Named Pipe:
text: Create Named Pipe
Create Process:
text: Create Process
Create Process as User:
text: Create Process as User
Create Registry Key:
text: Create Registry Key
Create Registry Key Value:
text: Create Registry Key Value
Create Remote Thread in Process:
text: Create Remote Thread in Process
Create Service:
text: Create Service
Create Socket:
text: Create Socket
Create Symbolic Link:
text: Create Symbolic Link
Create Thread:
text: Create Thread
Create Window:
text: Create Window
Delete Directory:
text: Delete Directory
Delete File:
text: Delete File
Delete Named Pipe:
text: Delete Named Pipe
Delete Network Share:
text: Delete Network Share
Delete Registry Key:
text: Delete Registry Key
Delete Registry Key Value:
text: Delete Registry Key Value
Delete Service:
text: Delete Service
Delete User:
text: Delete User
Disconnect from Named Pipe:
text: Disconnect from Named Pipe
Disconnect from Network Share:
text: Disconnect from Network Share
Disconnect from Socket:
text: Disconnect from Socket
Download File:
text: Download File
Enumerate DLLs:
text: Enumerate DLLs
Enumerate Network Shares:
text: Enumerate Network Shares
Enumerate Processes:
text: Enumerate Processes
Enumerate Protocols:
text: Enumerate Protocols
Enumerate Registry Key Subkeys:
text: Enumerate Registry Key Subkeys
Enumerate Registry Key Values:
text: Enumerate Registry Key Values
Enumerate Services:
text: Enumerate Services
Enumerate System Handles:
text: Enumerate System Handles
Enumerate Threads:
text: Enumerate Threads
Enumerate Threads in Process:
text: Enumerate Threads in Process
Enumerate Users:
text: Enumerate Users
Enumerate Windows:
text: Enumerate Windows
Find File:
text: Find File
Find Window:
text: Find Window
Flush Process Instruction Cache:
text: Flush Process Instruction Cache
Free Library:
text: Free Library
Free Process Virtual Memory:
text: Free Process Virtual Memory
Get Disk Free Space:
text: Get Disk Free Space
Get Disk Type:
text: Get Disk Type
Get Elapsed System Up Time:
text: Get Elapsed System Up Time
Get File Attributes:
text: Get File Attributes
Get Function Address:
text: Get Function Address
Get Host By Address:
text: Get Host By Address
Get Host By Name:
text: Get Host By Name
Get Host Name:
text: Get Host Name
Get Library File Name:
text: Get Library File Name
Get Library Handle:
text: Get Library Handle
Get NetBIOS Name:
text: Get NetBIOS Name
Get Process Current Directory:
text: Get Process Current Directory
Get Process Environment Variable:
text: Get Process Environment Variable
Get Process Startup Information:
text: Get Process Startup Information
Get Processes Snapshot:
text: Get Processes Snapshot
Get Registry Key Attributes:
text: Get Registry Key Attributes
Get Service Status:
text: Get Service Status
Get System Global Flags:
text: Get System Global Flags
Get System Host Name:
text: Get System Host Name
Get System Local Time:
text: Get System Local Time
Get System NetBIOS Name:
text: Get System NetBIOS Name
Get System Network Parameters:
text: Get System Network Parameters
Get System Time:
text: Get System Time
Get Thread Context:
text: Get Thread Context
Get Thread Username:
text: Get Thread Username
Get User Attributes:
text: Get User Attributes
Get Username:
text: Get Username
Get Windows Directory:
text: Get Windows Directory
Get Windows System Directory:
text: Get Windows System Directory
Get Windows Temporary Files Directory:
text: Get Windows Temporary Files Directory
Hide Window:
text: Hide Window
Impersonate Process:
text: Impersonate Process
Impersonate Thread:
text: Impersonate Thread
Inject Memory Page:
text: Inject Memory Page
Kill Process:
text: Kill Process
Kill Thread:
text: Kill Thread
Kill Window:
text: Kill Window
Listen on Port:
text: Listen on Port
Listen on Socket:
text: Listen on Socket
Load Driver:
text: Load Driver
Load Library:
text: Load Library
Load Module:
text: Load Module
Load and Call Driver:
text: Load and Call Driver
Lock File:
text: Lock File
Logon as User:
text: Logon as User
Map File:
text: Map File
Map Library:
text: Map Library
Map View of File:
text: Map View of File
Modify File:
text: Modify File
Modify Named Pipe:
text: Modify Named Pipe
Modify Process:
text: Modify Process
Modify Registry Key:
text: Modify Registry Key
Modify Registry Key Value:
text: Modify Registry Key Value
Modify Service:
text: Modify Service
Monitor Registry Key:
text: Monitor Registry Key
Move File:
text: Move File
Open File:
text: Open File
Open File Mapping:
text: Open File Mapping
Open Mutex:
text: Open Mutex
Open Port:
text: Open Port
Open Process:
text: Open Process
Open Registry Key:
text: Open Registry Key
Open Service:
text: Open Service
Open Service Control Manager:
text: Open Service Control Manager
Protect Virtual Memory:
text: Protect Virtual Memory
Query DNS:
text: Query DNS
Query Disk Attributes:
text: Query Disk Attributes
Query Process Virtual Memory:
text: Query Process Virtual Memory
Queue APC in Thread:
text: Queue APC in Thread
Read File:
text: Read File
Read From Named Pipe:
text: Read From Named Pipe
Read From Process Memory:
text: Read From Process Memory
Read Registry Key Value:
text: Read Registry Key Value
Receive Data on Socket:
text: Receive Data on Socket
Receive Email Message:
text: Receive Email Message
Release Mutex:
text: Release Mutex
Rename File:
text: Rename File
Revert Thread to Self:
text: Revert Thread to Self
Send Control Code to File:
text: Send Control Code to File
Send Control Code to Pipe:
text: Send Control Code to Pipe
Send Control Code to Service:
text: Send Control Code to Service
Send DNS Query:
text: Send DNS Query
Send Data on Socket:
text: Send Data on Socket
Send Data to Address on Socket:
text: Send Data to Address on Socket
Send Email Message:
text: Send Email Message
Send ICMP Request:
text: Send ICMP Request
Send Reverse DNS Query:
text: Send Reverse DNS Query
Set File Attributes:
text: Set File Attributes
Set NetBIOS Name:
text: Set NetBIOS Name
Set Process Current Directory:
text: Set Process Current Directory
Set Process Environment Variable:
text: Set Process Environment Variable
Set System Global Flags:
text: Set System Global Flags
Set System Host Name:
text: Set System Host Name
Set System Time:
text: Set System Time
Set Thread Context:
text: Set Thread Context
Show Window:
text: Show Window
Shutdown System:
text: Shutdown System
Sleep Process:
text: Sleep Process
Sleep System:
text: Sleep System
Start Service:
text: Start Service
Unload Driver:
text: Unload Driver
Unload Module:
text: Unload Module
Unlock File:
text: Unlock File
Unmap File:
text: Unmap File
Upload File:
text: Upload File
Write to File:
text: Write to File
Write to Process Virtual Memory:
text: Write to Process Virtual Memory