Description

Advanced detection dashboards focused on PowerShell abuse and living-off-the-land techniques.

Includes:

• Encoded and obfuscated command detection

• Suspicious parent-child process relationships

• Behavioral detection aligned to T1059

• SOC Tier-1 & Tier-2 investigation views