# AN1932 — Detection of Network Sniffing (ICS) ## Descrição Analítico para detecção de — na plataforma ICS. **Plataformas:** ICS --- ### Fontes de Log | Fonte | Detalhe | |-------|--------| | Process Creation (DC0032) | Process | | Command Execution (DC0064) | Command | ### Data Components Utilizados - [[dc0032-process-creation|DC0032]] - [[dc0064-command-execution|DC0064]] --- *Fonte: [MITRE ATT&CK — AN1932](https://attack.mitre.org/detectionstrategies/DET0800#AN1932)*