With Prelert, customers can quickly deploy use cases that detect behaviors associated with advanced threats; rapidly speeding detection and reducing dwell time. Get started by selecting a tab to look at use cases by data source type or by threat indicator category. Based on your tab choice, you can filter to see a list of detectable elementary attack behaviors with a link to the “Hot Sheet” use case configuration.
Intrusion by or introduction of rogue entity
Covert internal recon, lateral movement, pivoting, persistence and/or escalation of privileges
Command and control actions and related tunneling
Action on objectives resulting in theft of sensitive information