Using SCOM to Detect Pass the Ticket Attacks

Disclaimer: Due to changes in the MSFT corporate blogging policy, I’m moving all of my content to the following location. Please reference all future content from that location. Thanks. Last month, I wrote a two part series on using SCOM to detect pass the hash attacks. I’ve decided to take some time and focus on…

2