Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
Detect failed login attacks and delete user
| Attribute | Value |
|---|---|
| Type | Analytic Rule |
| Solution | Pure Storage |
| ID | ed32b115-5001-43a7-a2bb-f53026db4d97 |
| Severity | High |
| Kind | NRT |
| Tactics | CredentialAccess |
| Techniques | T1212 |
| Source | View on GitHub |
This content item queries data from the following tables:
| Table | Selection Criteria | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|---|
Syslog |
SyslogMessage has "invalid username or password"SyslogMessage has "purity.alert" |
✓ | ✓ | ? |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊