How does the use of endpoint application allow lists impact malware attacks against the system?
How does the use of endpoint application allow lists impact malware attacks against the system?
The use of endpoint application allow lists impacts malware attacks against the system because it forces an attacker to modify their attack tool use. Application allow lists limit the applications that can run on a system to a pre-approved list, thereby preventing unauthorized or malicious applications from executing. This means attackers cannot use their usual tools and must find alternative methods to bypass these restrictions, typically leading to modifications in how they deploy their attacks.
Answer is "D" based upon Living Off the Land (LOL) concept
What messes me up is the verbiage. modify attack tool.