Behavior Prevention on Endpoint
Use capabilities to prevent suspicious behavior patterns from occurring on endpoint systems. This could include suspicious process, file, API call, etc. behavior.
Techniques Addressed by Mitigation
|Enterprise||T1173||Dynamic Data Exchange|
Some endpoint security solutions can be configured to block some types of process injection based on common sequences of behavior that occur during the injection process.