Defender for Identity
Cloud-based security solution that identifies, detects, and investigates advanced threats, compromised identities, and malicious insider actions
1 Data Source
1 Template
0 Downloads
Security-Alerts
No description available.
1 Templates
JSON
Frequencyenum.low Vol
🎫 Pass-the-Ticket Attack Detection
Defender for Identity lateral movement alert
Detects pass-the-ticket attacks where attackers steal Kerberos tickets from one machine and use them on another to move laterally through the network. This is a critical indicator of advanced persistent threats and Active Directory compromise.
#defender
#identity
#kerberos
CLI Install