SOC and Credential theft
Posted in Computer Forensics, Security Architecture on Jul 6th, 2018
Last months I encountered a strange situation at a customer. I did a security review and deployed some simple log analytics tool to identify where Domain Admins logged on as we suspected that an intruder was roaming around in the environment. To my customer´s fear we more or less instantly saw that the Administrator account […]