# AN0436 — Detection Strategy for Exfiltration Over Webhook (Windows) ## Descrição Analítico para detecção de — na plataforma Windows. **Plataformas:** Windows --- ### Fontes de Log | Fonte | Detalhe | |-------|--------| | Process Creation (DC0032) | WinEventLog:Sysmon | | Network Connection Creation (DC0082) | WinEventLog:Sysmon | | File Access (DC0055) | WinEventLog:Security | ### Data Components Utilizados - [[dc0032-process-creation|DC0032]] - [[dc0055-file-access|DC0055]] - [[dc0082-network-connection-creation|DC0082]] --- *Fonte: [MITRE ATT&CK — AN0436](https://attack.mitre.org/detectionstrategies/DET0153#AN0436)*