[Deprecated Rule] Potential Privilege Escalation via Local Kerberos R… (#2209)
* [Deprecated Rule] Potential Privilege Escalation via Local Kerberos Relay over LDAP
FPs in certain cases with no room for tuning.
* Update privilege_escalation_krbrelayup_suspicious_logon.toml
Co-authored-by: Colson Wilhoit <48036388+DefSecSentinel@users.noreply.github.com>
(cherry picked from commit 8d34416049)
This commit is contained in:
Samirbous
committed by
github-actions[bot]
github-actions[bot]
parent
84121d910e
commit
2fe7336f2b
+3
-2
@@ -1,7 +1,8 @@
|
||||
[metadata]
|
||||
creation_date = "2022/04/26"
|
||||
maturity = "production"
|
||||
updated_date = "2022/04/26"
|
||||
deprecation_date = "2022/08/01"
|
||||
maturity = "deprecated"
|
||||
updated_date = "2022/08/01"
|
||||
|
||||
[rule]
|
||||
author = ["Elastic"]
|
||||
Reference in New Issue
Block a user