Active Directory Privilege Escalation Identified
Domain Policy Modification
Risk
AWS S3 Exfiltration Behavior Identified
Transfer Data to Cloud Account
Steal or Forge Authentication Certificates Behavior Identified
Steal or Forge Authentication Certificates
Active Directory Lateral Movement Identified
Exploitation of Remote Services
ProxyShell ProxyNotShell Behavior Detected
Exploit Public-Facing Application
Okta Risk Threshold Exceeded
Valid Accounts, Brute Force
Log4Shell CVE-2021-44228 Exploitation
Ingress Tool Transfer, Exploit Public-Facing Application, Command and Scripting Interpreter
Living Off The Land
Ingress Tool Transfer, Exploit Public-Facing Application, Command and Scripting Interpreter
Linux Persistence and Privilege Escalation Risk Behavior
Abuse Elevation Control Mechanism
Azure Active Directory High Risk Sign-in
Compromise Accounts, Cloud Accounts, Brute Force, Password Spraying