This site has been deprecated in favor of https://attack.mitre.org and will remain in place until 11/1/22.
Execution Prevention
Jump to navigation
Jump to search
Execution Prevention | |
---|---|
Mitigation | |
ID | M0938 |
NIST SP 800-53 Rev. 4 | SI-3 |
IEC 62443-3-3:2013 | SR 3.2 |
IEC 62443-4-2:2019 | CR 3.2 |
Description
Block execution of code on a system through application control, and/or script blocking.
Techniques Addressed by Mitigation
Name | Use |
---|---|
Command-Line Interface | Execution prevention may block malicious software from accessing protected resources through the command line interface. |
Execution through API | Minimize the exposure of API calls that allow the execution of code. |
Masquerading | Use tools that restrict program execution via application control by attributes other than file name for common system and application utilities. |
Native API | Minimize the exposure of API calls that allow the execution of code. |
Scripting | Execution prevention may prevent malicious scripts from accessing protected resources. |
User Execution | Application control may be able to prevent the running of executables masquerading as other files. |