Login
Download
Skill UI
Browse and discover
10271+
curated skills
All
Development
Artificial Intelligence
Design & Creative
Product & Business
Data Science
Marketing
Soft Skills
Productivity
Engineering
Languages
Search
Active Directory
, found
1
results
Default
Newest
Most Downloaded
Detecting NTLM Relay Attacks with Event Correlation
detecting-ntlm-relay-with-event-correlation
mukul975/Anthropic-Cybersecurity-Skills
482
This framework detects NTLM relay attacks across Active Directory environments by correlating Windows Security Event 4624 (LogonType 3). It identifies key indicators such as IP-to-hostname mismatches, Responder/LLMNR poisoning artifacts, and non-enforced SMB/LDAP signing, providing comprehensive threat detection for T1557.001.
View Details
1
Language
简体中文
English
