Process Analysis consists of observing a running application process and analyzing it to watch for certain behaviors or conditions which may indicate adversary activity. Analysis can occur inside of the process or through a third-party monitoring application. Examples include monitoring system and privileged calls, monitoring process initiation chains, and memory boundary allocations.
https://d3fend.mitre.org/technique/d3f:ProcessAnalysis/
ID | Name | Description | NIST Rev5 | D3FEND | ISO 27001 |
ID | Name | Description |
---|
ID | Description |
Requirement | Rationale/Additional Guidance/Notes |
---|