Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
Calculate the number of SrcBytes (Sent bytes) for each unique combination of SrcIpAddress and DstIpAddress within a 24-hour timeframe. The presence of a high count of repetitive identical SrcBytes could potentially indicate beaconing activity.
| Attribute | Value |
|---|---|
| Type | Hunting Query |
| Solution | Web Session Essentials |
| ID | 75929222-fee5-4f97-a2cc-cb6f29444385 |
| Tactics | CommandAndControl |
| Techniques | T1071, T1571 |
| Source | View on GitHub |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊