Digital Forensic Survival Podcast: DFSP # 395 - Lateral Movement and Admin Logons

Digital Forensic Survival Podcast

2024
April
March
February
January

2023
December
November
October
September
August
July
June
May
April
March
February
January

2022
December
November
October
September
August
July
June
May
April
March
February
January

2021
December
November
October
September
August
July
June
May
April
March
February
January

2020
December
November
October
September
August
July
June
May
April
March
February
January

2019
December
November
October
September
August
July
June
May
April
March
February
January

2018
December
November
October
September
August
July
June
May
April
March
February
January

2017
December
November
October
September
August
July
June
May
April
March
February
January

2016
December
November
October
September
August
July
June
May
April
March
February

Now displaying: Page 1

DFSP # 395 - Lateral Movement and Admin Logons 0

Sep 12, 2023

This week is on lateral movement detection techniques. Inspecting Domain Admin account logons is a key component to lateral movement triage. Admin accounts are sought after by attackers for their elevated privileges. Evidence is often left behind both on the targeted system and on the domain controller. Both these factors provide protection opportunity through Windows event log analysis. I’ll break down the method....

Download this Episode

0 Comments

Adding comments is not available at this time.