Skip to main content

Malware Lateral Movement Assessment and Response

This playbook identifies and remediates malware's lateral movement impact due to a phishing campaign in an organization. This playbook takes the hosts and attachments with the phishing email and then 1. It scans at the endpoint on which the phishing link was clicked and takes action to resolve any C&C activity and 2. It retroactively scans the logging history to identify lateral movement and quartines or resolve the traffic communication from those hosts

PUBLISHER

Accenture

INFO

Supported ByCommunity
CreatedFebruary 17, 2021
Last ReleaseFebruary 17, 2021
WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.