Activity on Domain Controllers Scenario

Threat Detection, Investigation, and Response (TDIR) Use Case Categories
Threat Detection, Investigation, and Response (TDIR) Use Case Categories Hierarchy
Compromised Insiders Use Case Category
External Threats Use Case Category
Malicious Insiders Use Case Category

Learn about the Privileged Activity Activity on Domain Controllers scenario.

Domain controllers contain data that validates access to your network, including user or group policies and all asset names. The Activity on Domain Controllers scenario describes when an attacker does something abnormal on a domain controller to access critical account information.

In the Threat Detection, Investigation, and Response (TDIR) Use Case Categories hierarchy, the Activity on Domain Controllers scenario falls under the Privileged Activity use case.

Use CasesGet Started with Threat Detection, Investigation, and Response (TDIR) Use Case Categories

Table of ContentsTable of Contents

Activity on Domain Controllers Scenario