Pass the hash detection using Windows Events

In this paper we will focus on detecting Pass-The-Hash attacks, after the credentials were stolen, via the event viewer. Pass-The-Hash is an attack technique that allows an attacker to start lateral movement in the network…