Back to all walkthroughs
XDR: Privilege Escalation
Premium roomDetect and investigate privilege escalation with Defender XDR.
medium
To access material, start machines and answer questions login.
This room will discuss a privilege escalation technique from the perspective of a multi-stage incident in Microsoft Defender XDR.
- Firstly, we will look at the privilege escalation concept.
- Then, we will see a sample technique for it, namely bypass.
- Finally, we will investigate the multi-stage incident in Microsoft Defender XDR. While doing so, we will focus on the following parts of this incident, as each of them will help us to understand and build the attack narrative from a 360-degree view:
- Attack story
- Alerts
- Assets
- Investigations
- Evidence and response
During the hands-on part, participants will also have the chance to explore and investigate similar alerts and incidents in the Microsoft Defender XDR lab environment.
Answer the questions below
Let's get started!
Ready to learn Cyber Security?
The XDR: Privilege Escalation room is only available for premium users. Signup now to access more than 500 free rooms and learn cyber security through a fun, interactive learning environment.
Already have an account? Log in