Does the current version support this, and/or will the full version allow for this including md5 sum hashing.

Can the current preview version get additional info from syslog data from external firewalls? ie handle data being sent TO the ATA

Is there a way to verify an alert about pass the ticket attack either from DC logs itself or the affected clients.