Monitor process creation events to detect suspicious process trees, parent-child relationships, and known malicious behaviors.
Counters 3 ATT&CK techniques
Unlock Full Content
Premium members get access to implementation guidance, tools and technologies, AI enhancement tips, and detailed ATT&CK mappings for all D3FEND techniques.