A. A hardening practice that permanently eliminates attack surface by uninstalling applications, OS components, and features not required for the system's function β removing the risk entirely rather than patching or restricting it
B. An endpoint security platform that detects threats using signatures, behavioral analysis, machine learning, and process monitoring; investigates through root cause analysis; and autonomously responds by isolating the system, quarantining threats, and rolling back configurations
C. A network scanning tool used during hardening assessments to discover open ports and running services on systems β the standard method for creating a port baseline, verifying post-hardening changes, and detecting new open ports in ongoing monitoring
D. A security control integrated into endpoint protection platforms that monitors OS-level activity β including memory access, registry modifications, and file system writes to protected directories β and blocks malicious actions such as buffer overflows and unauthorized kernel driver installation before they complete