Attackers almost never reach their targets immediately when they enter an environment; they perform lateral movement, pivoting between machines on their way to a target. There are various ways to do lateral movement. The method used is typically based on the information attackers get from the endpoint they initially compromised, though it can also be based on information gathered from the network.
MazeRunner enables lateral movement detection before attackers reach critical assets. By placing relevant information throughout your endpoints, servers, and network, MazeRunner quickly and accurately detects lateral movement. Once attackers run tools or attempt to use credentials, MazeRunner alerts on that activity in real-time.
Alerts can be generated as soon as attackers attempt to use stolen credentials anywhere in the network.