Privilege Escalation
Brief
Detect, Investigate and Respond to Privilege Escalation Incidents
Privilege escalation refers to an attack where the attacker gains higher-level permissions or unauthorized access to privileged user accounts or assets. The attacker might use an enumeration tool to find a valid account to compromise, switch to an account with greater access privileges or increase permissions on a compromised user or system to elevate their access.
Exabeam helps security teams outsmart adversaries using privilege escalation with the support of automation and use case content, like behavioral models, rules and checklists, across the entire analyst workflow, from detection to response. First, we prescribe data sources to collect and analyze. User and entity behavior analytics (UEBA) is then used to develop a baseline of normal activity for every user and device in an organization.
