This site has been deprecated in favor of https://attack.mitre.org and will remain in place until 11/1/22.
Execution Prevention
Jump to navigation
Jump to search
| Execution Prevention | |
|---|---|
| Mitigation | |
| ID | M0938 |
| NIST SP 800-53 Rev. 4 | SI-3 |
| IEC 62443-3-3:2013 | SR 3.2 |
| IEC 62443-4-2:2019 | CR 3.2 |
Description
Block execution of code on a system through application control, and/or script blocking.
Techniques Addressed by Mitigation
| Name | Use |
|---|---|
| Command-Line Interface | Execution prevention may block malicious software from accessing protected resources through the command line interface. |
| Execution through API | Minimize the exposure of API calls that allow the execution of code. |
| Masquerading | Use tools that restrict program execution via application control by attributes other than file name for common system and application utilities. |
| Native API | Minimize the exposure of API calls that allow the execution of code. |
| Scripting | Execution prevention may prevent malicious scripts from accessing protected resources. |
| User Execution | Application control may be able to prevent the running of executables masquerading as other files. |
