Description

Analyzing system calls to determine whether a process is exhibiting unauthorized behavior.

Technical Details

Relationships

Related Techniques

• D3-FAPA File Access Pattern Analysis
• D3-SEA Script Execution Analysis
• D3-IBCA Indirect Branch Call Analysis
• D3-PSMD Process Self-Modification Detection
• D3-PCSV Process Code Segment Verification
• D3-DQSA Database Query String Analysis
• D3-SSC Shadow Stack Comparisons
• D3-PSA Process Spawn Analysis
• D3-SICA System Init Config Analysis
• D3-SFA System File Analysis

References

For the official documentation and additional resources, visit the MITRE D3FEND website.