DET0738 Detection of Exploitation for Privilege Escalation
| Item | Value |
|---|---|
| ID | DET0738 |
| Version | 1.0 |
| Created | 21 October 2025 |
| Last Modified | 21 October 2025 |
Technique Detected: T0890 (Exploitation for Privilege Escalation)
Analytics
ICS
AN1871
Detecting software exploitation may be difficult depending on the tools available. Software exploits may not always succeed or may cause the exploited process to become unstable or crash.
Log Sources
| Data Component | Name | Channel |
|---|---|---|
| Application Log Content (DC0038) | Application Log | None |
Mutable Elements
| Field | Description |
|---|---|