Hardentechnique

D3-PSEPProcess Segment Execution Prevention

Process Segment Execution Prevention

Definition

Preventing execution of any address in a memory region other than the code segment.

Defends against12

TypeTargetConfidenceTier
TechniqueExploit Public-Facing Applicationt1190100%live
TechniqueExploitation for Defense Evasiont1211100%live
SubTechniqueCredential API Hookingt1056.004100%live
TechniqueExploitation for Credential Accesst1212100%live
TechniqueExploitation of Remote Servicest1210100%live
SubTechniqueMavinjectt1218.013100%live
TechniqueSystem Owner/User Discoveryt1033100%live
TechniqueReflective Code Loadingt1620100%live
TechniqueDrive-by Compromiset1189100%live
TechniqueExploitation for Privilege Escalationt1068100%live
TechniqueExploitation for Client Executiont1203100%live
SubTechniqueProcess Hollowingt1055.012100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Defence
Process Code Segment Verification
Defence
Hardware-based Process Isolation
Defence
Kernel-based Process Isolation
Defence
Application-based Process Isolation
Defence
Process Self-Modification Detection
Defence
Process Suspension
Sourced from MITRE D3FEND ontology. Curated by Adam Lundqvist, SQUR.