File tree Expand file tree Collapse file tree 1 file changed +33
-0
lines changed
Expand file tree Collapse file tree 1 file changed +33
-0
lines changed Original file line number Diff line number Diff line change 70547054 "service" : " ssh"
70557055 "created_at" : " 2021-09-27T15:17:49"
70567056 },
7057+ "crowdsecurity/ssh-time-based-bf" : {
7058+ "name" : " crowdsecurity/ssh-time-based-bf"
7059+ "description" : " Detect time-based ssh bruteforce attempts that evade rate limiting (with false positive reduction)"
7060+ "label" : " SSH Time-Based Bruteforce"
7061+ "behaviors" : [
7062+ " ssh:bruteforce"
7063+ ],
7064+ "mitre_attacks" : [
7065+ " TA0006:T1110"
7066+ ],
7067+ "confidence" : 3 ,
7068+ "spoofable" : 0 ,
7069+ "cti" : true ,
7070+ "service" : " ssh"
7071+ "created_at" : " 2026-01-20T09:34:42"
7072+ },
7073+ "crowdsecurity/ssh-time-based-bf_user-enum" : {
7074+ "name" : " crowdsecurity/ssh-time-based-bf_user-enum"
7075+ "description" : " Detect time-based ssh user enum bruteforce attempts (with false positive reduction)"
7076+ "label" : " SSH Time-Based User Enumeration"
7077+ "behaviors" : [
7078+ " ssh:bruteforce"
7079+ ],
7080+ "mitre_attacks" : [
7081+ " TA0043:T1589"
7082+ " TA0006:T1110"
7083+ ],
7084+ "confidence" : 3 ,
7085+ "spoofable" : 0 ,
7086+ "cti" : true ,
7087+ "service" : " ssh"
7088+ "created_at" : " 2026-01-20T09:34:42"
7089+ },
70577090 "crowdsecurity/stirling-pdf-bf" : {
70587091 "name" : " crowdsecurity/stirling-pdf-bf"
70597092 "description" : " Detect stirling pdf bruteforce"
You can’t perform that action at this time.
0 commit comments