What is the authoritative source for D3-HBPI?

Hardware-based Process Isolation (D3-HBPI) is catalogued in MITRE D3FEND and curated for EU compliance use cases by SQUR.

Isolatetechnique

D3-HBPIHardware-based Process Isolation

Hardware-based Process Isolation

Preventing one process from writing to the memory space of another process through hardware based address manager implementations.

Type	Target	Confidence	Tier
Technique	Multi-Factor Authentication Request Generationt1621	100%	live
SubTechnique	Mshtat1218.005	100%	live
SubTechnique	SQL Stored Procedurest1505.001	100%	live
Technique	Scheduled Task/Jobt1053	100%	live
SubTechnique	Compiled HTML Filet1218.001	100%	live
SubTechnique	Netsh Helper DLLt1546.007	100%	live
Technique	System Owner/User Discoveryt1033	100%	live
SubTechnique	Web Shellt1505.003	100%	live
Technique	System Service Discoveryt1007	100%	live
SubTechnique	AppInit DLLst1546.010	100%	live
SubTechnique	Process Doppelgängingt1055.013	100%	live
Technique	System Network Configuration Discoveryt1016	100%	live
SubTechnique	Asynchronous Procedure Callt1055.004	100%	live
SubTechnique	Rundll32t1218.011	100%	live
Technique	System Information Discoveryt1082	100%	live
Technique	Exploitation for Credential Accesst1212	100%	live
SubTechnique	Parent PID Spoofingt1134.004	100%	live
SubTechnique	Disable or Modify Toolst1562.001	100%	live
Technique	Process Discoveryt1057	100%	live
SubTechnique	Transport Agentt1505.002	100%	live
Technique	Use Alternate Authentication Materialt1550	100%	live
SubTechnique	CMSTPt1218.003	100%	live
Technique	XSL Script Processingt1220	100%	live
SubTechnique	AppCert DLLst1546.009	100%	live
Technique	Deobfuscate/Decode Files or Informationt1140	100%	live
Technique	Modify Authentication Processt1556	100%	live
SubTechnique	LSA Secretst1003.004	100%	live
SubTechnique	LSASS Memoryt1003.001	100%	live
SubTechnique	Scheduled Taskt1053.005	100%	live
Technique	System Time Discoveryt1124	100%	live