Detections
Analytics

System Service Discovery

Description

Adversaries may try to gather information about registered local system services. Adversaries may obtain information about services using tools as well as OS utility commands such as sc query, tasklist /svc, systemctl --type=service, and net start.

Products, Sensors, and Dependencies

ProductDependenciesData sourceAccess requiredProtocolData CollectedNotes

References

Service information Information

Attack Path Technique Details

Framework: MITRE ATT&CK

Family: Discovery