Back to D3FEND Hub
D3-PHDM

Process Spawn Analysis

Detect Tactic
Premium

Monitor process creation events to detect suspicious process trees, parent-child relationships, and known malicious behaviors.

Counters 3 ATT&CK techniques

Unlock Full Content

Premium members get access to implementation guidance, tools and technologies, AI enhancement tips, and detailed ATT&CK mappings for all D3FEND techniques.