LSASS Credential Dumpin
LSASS Credential Dumping Pack.#This Playbook is part of the
Supported Cortex XSOAR versions: 6.0.0 and later.
This playbook is focused on detecting Credential Dumping attack as researched by Accenture Security analysts and engineers.
This playbook uses the following sub-playbooks, integrations, and scripts.
- Dedup - Generic v3
- Entity Enrichment - Generic v3
- Carbon Black Enterprise EDR
- Tanium Threat Response
- ServiceNow v2
##Playbook Inputs There are no inputs for this playbook.
There are no outputs for this playbook.