Domain Account Monitoring (c899ef50-74bd-5ba7-a5ad-27d357e78f1b)

Monitoring the existence of or changes to Domain User Accounts.

Cluster A	Galaxy A	Cluster B	Galaxy B	Level
Domain Accounts - T1078.002 (c3d4bdd9-2cfe-4a80-9d0c-07a29ecdce8f)	Attack Pattern	Domain Account Monitoring (c899ef50-74bd-5ba7-a5ad-27d357e78f1b)	MITRE D3FEND	1
Additional Email Delegate Permissions - T1098.002 (e74de37c-a829-446c-937d-56a44f0e9306)	Attack Pattern	Domain Account Monitoring (c899ef50-74bd-5ba7-a5ad-27d357e78f1b)	MITRE D3FEND	1
Domain Account Monitoring (c899ef50-74bd-5ba7-a5ad-27d357e78f1b)	MITRE D3FEND	Additional Cloud Roles - T1098.003 (2dbbdcd5-92cf-44c0-aea2-fe24783a6bc3)	Attack Pattern	1
Domain Account Monitoring (c899ef50-74bd-5ba7-a5ad-27d357e78f1b)	MITRE D3FEND	Domain Account - T1087.002 (21875073-b0ee-49e3-9077-1e2a885359af)	Attack Pattern	1
Valid Accounts - T1078 (b17a1a56-e99c-403c-8948-561df0cffe81)	Attack Pattern	Domain Accounts - T1078.002 (c3d4bdd9-2cfe-4a80-9d0c-07a29ecdce8f)	Attack Pattern	2
Account Manipulation - T1098 (a10641f4-87b4-45a3-a906-92a149cb2c27)	Attack Pattern	Additional Email Delegate Permissions - T1098.002 (e74de37c-a829-446c-937d-56a44f0e9306)	Attack Pattern	2
Account Manipulation - T1098 (a10641f4-87b4-45a3-a906-92a149cb2c27)	Attack Pattern	Additional Cloud Roles - T1098.003 (2dbbdcd5-92cf-44c0-aea2-fe24783a6bc3)	Attack Pattern	2
Account Discovery - T1087 (72b74d71-8169-42aa-92e0-e7b04b9f5a08)	Attack Pattern	Domain Account - T1087.002 (21875073-b0ee-49e3-9077-1e2a885359af)	Attack Pattern	2