Kerberoasting Spn Request With RC4 Encryption

Description

This search detects a potential kerberoasting attack via service principal name requests

   Help

Kerberoasting Spn Request With RC4 Encryption Help

You must be ingesting endpoint data that tracks process activity, and include the windows security event logs that contain kerberos

   Search

Open in Search