Managed Sentinel – Alert 175

Alert IDMS-A175
Alert NamePassword Spray Attack - Linux
DescriptionThis alert identify attempts to login with multiple accounts from the same source in a short time interval.
Severity LevelHigh
Threat Indicator
MITRE ATT&CK TacticsInitialAccess
Log sourcessyslog
False Positives
Recommendations