Direct Inward Dialing: +1 408 916 9892
Identify the source and reason behind every failed logon attempt, and find user accounts with the highest percentages of logon failures.
Identify suspicious user activities such as an unusually high volume of events and file activities carried out at unusual times.
Audit privilege use, and report on critical events like password resets, user management, and privilege escalations.
Detect indicators of lateral movement like out-of-the-ordinary remote desktop activity, execution of new processes, etc.
Track file deletions, unauthorized file changes, and anomalous surges in file accesses with detailed File Integrity Monitoring reports.
Detect USB devices plugged in to domain controllers, servers, or workstations, and receive alerts when files are copied to them.
Scenario : A rogue administrator resets a critical user's password, and uses these credentials to access and exfiltrate confidential data. The next day, the critical user gets locked out because of their now-obsolete credentials, and requests a new password from the administrator.
With ADAudit Plus, track down the source of the insider attack by investigating critical events such as password resets made by the rogue administrator, unusual remote desktop activity from the critical user's account, details of the account lockout events, and more.
Scenario : An administrator accidentally grants excessive privileges to an employee who proceeds to use these privileges to exfiltrate sensitive data.
With ADAudit Plus, correlate reports on privilege escalations, users performing a privileged action for the first time, and file copy actions to USB devices to quickly identify and rectify the error.
Scenario : A researcher accidentally lands on a suspicious website that installs and executes a malicious executable (such as ransomware) in the network.
With ADAudit Plus, trigger alerts when this unusual process is run on a host. If the executable initiates a ransomware attack, ADAudit Plus can instantly detect it and shut down infected machines to prevent it from spreading further.
