Lateral Movement Use Case

Threat Detection, Investigation, and Response (TDIR) Use Case Categories
Threat Detection, Investigation, and Response (TDIR) Use Case Categories Hierarchy
Compromised Insiders Use Case Category
External Threats Use Case Category
Malicious Insiders Use Case Category

Learn about the Lateral Movement use case and what Exabeam functionalities protect against it.

The Lateral Movement use case describes when an attacker hops between devices to move through a network and search for sensitive data and other valued assets.

In the Threat Detection, Investigation, and Response (TDIR) Use Case Categories hierarchy, the Lateral Movement use case falls under the Compromised Insiders use case category. It contains specific scenarios, including:

Abnormal Network Connections
Abnormal Remote Access
Pass the Hash
Pass the Ticket

In Case Manager, use the out-of-the-box Lateral Movement incident type to standardize incident fields, phases, and tasks for lateral movement incidents.

View more information about lateral movement and tips on configuring the use case on the Exabeam Community.

Use CasesGet Started with Threat Detection, Investigation, and Response (TDIR) Use Case Categories

Table of ContentsTable of Contents

Lateral Movement Use Case