Matching SHP-iT

URI: MP-SHP-iT

Description: Finds a non-trivial Process running on a shell Host, and optionally the interactive process user and host manager.

Root Pattern: R-SHP

R-SHP

Finds a Process running on a shell Host.

(empty)

P.J.SHP-iT.7

Malware infection installs back door in process Process: if Process is infected by malware, it may install a back door in Process, which could be accessed remotely at a later time.

P.E-M.SHP-iT.8

Vulnerability (M) discovered at Process: software vulnerability found in process Process, which could allow admin level access to its host device, and may be known to attackers. Around 18 percent of vulnerabilities allow complete control of the vulnerable device (NVD 2015-2019).

P.E-U.SHP-iT.8

Vulnerability (U) discovered at Process: software vulnerability found in process Process, which could allow user level access to its host device with the rights of the process, and may be known to attackers. Around 30 percent of vulnerabilities allow local user access to the vulnerable device (NVD 2015-2019).

Matching SHP-iT

R-SHP

Construction Patterns (0)

Threat Patterns (3)

P.J.SHP-iT.7

P.E-M.SHP-iT.8

P.E-U.SHP-iT.8