Tag
high
advisory
NetExec File Creation Detection
2 rules 3 TTPsThis brief covers the detection of NetExec, a post-exploitation and lateral movement tool, through monitoring for unique file creation patterns associated with its execution and file extraction in Windows environments.
netexec
crackmapexec
lateral-movement
post-exploitation
hacktool
2r
3t
high
advisory
Detection of NetExec Hacktool Execution
2 rules 2 TTPsThe threat brief details the detection of NetExec (formerly CrackMapExec), a post-exploitation tool used for Active Directory penetration testing and network enumeration, often employed by threat actors for lateral movement and credential harvesting.
pentest
post-exploitation
lateral-movement
active-directory
2r
2t