Windows AppLocker Block Events
System Binary Proxy Execution
System Binary Proxy Execution
Disable or Modify Tools, Impair Defenses
Sudo and Sudo Caching, Abuse Elevation Control Mechanism
Command and Scripting Interpreter
Malicious Image, User Execution