Lucene search
K

4 matches found

Rapid7 Blog
Rapid7 Blog
added 2021/04/07 3:4 p.m.28 views

MDR Vendor Must-Haves, Part 4: Ingestion of Authentication Data Across Local, Domain, and Cloud Sources

This blog post is part of an ongoing series about evaluating Managed Detection and Response MDR providers. For more insights, check out our guide, “10 Things Your MDR Service Must Do.” There isn’t a single threat or breach that doesn’t involve attackers using legitimate credentials to cause harm...

0.7AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2020/10/13 1:30 p.m.27 views

2021 Detection and Response Planning, Part 2: Driving SOC Efficiency With a Detections-First Approach to SIEM

This is the second installment of our series around 2021 security planning. In part one, Rapid7 Detection and Response Practice Advisor Jeffrey Gardner offered tips and advice for ramping up annual security planning. In this installment, we’ll explore the importance of reliable and comprehensive...

6.8AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2019/09/24 4:0 p.m.92 views

Azure Sentinel—the cloud-native SIEM that empowers defenders is now generally available

Machine learning enhanced with artificial intelligence AI holds great promise in addressing many of the global cyber challenges we see today. They give our cyber defenders the ability to identify, detect, and block malware, almost instantaneously. And together they give security admins the abilit...

7.2AI score
Exploits0
Penetration Testing Lab
Penetration Testing Lab
added 2018/04/16 7:30 a.m.19 views

DCShadow

The DCShadow is an attack which tries to modify existing data in the Active Directory by using legitimate API's which are used by domain controllers. This technique can be used in a workstation as a post-domain compromise tactic for establishing domain persistence bypassing most SIEM solutions...

5.4AI score
Exploits0
Rows per page
Query Builder