Users can manually add commonly-abused applications used in operations and processes to the Watchlist for strengthening security monitoring. By default, StellarProtect monitors Powershell.exe, wscript.exe, cscript.exe, mshta.exe, psexec.exe when the Operations Behavior Anomaly Detection is enabled.
Views: