ATT&CK 기법 · Persistence · Privilege Escalation
Create or Modify System Process T1543
이 기법을 다룬 REVELARE 한국어 위협 분석 2편 · Persistence · Privilege Escalation
이 기법을 다룬 분석
MITRE 공식 정의
Adversaries may create or modify system-level processes to repeatedly execute malicious payloads as part of persistence. When operating systems boot up, they can start processes that perform background system functions. On Windows and Linux, these system processes are referred to as services.(Citation: TechNet Services) On macOS, launchd processes known as [Launch Daemon](https://attack.mitre.org/techniques/T1543/004) and [Launch Agent](https://attack.mitre.org/techniques/T15…
플랫폼: Containers, Linux, macOS, Windows