Privilege Escalation Use Case

Threat Detection, Investigation, and Response (TDIR) Use Case Categories
Threat Detection, Investigation, and Response (TDIR) Use Case Categories Hierarchy
Compromised Insiders Use Case Category
External Threats Use Case Category
Malicious Insiders Use Case Category

Learn about the Privilege Escalation use case and what Exabeam functionalities protect against it.

The Privilege Escalation use case describes when attackers increase the privileges of a compromised account or switch accounts so they can access more things.

In the Threat Detection, Investigation, and Response (TDIR) Use Case Categories hierarchy, the Privilege Escalation use case falls under the Compromised Insiders use case category. It contains specific scenarios, including:

Account Switch
Bypass Access Controls
Discovery
DLL Hijacking and Side Loading
Permission Changes

In Case Manager, use the out-of-the-box Privilege Escalation incident type to standardize incident fields, phases, and tasks for privilege escalation incidents.

View more information privilege escalation and tips on configuring the use case on the Exabeam Community.

Use CasesGet Started with Threat Detection, Investigation, and Response (TDIR) Use Case Categories

Table of ContentsTable of Contents

Privilege Escalation Use Case