Managed Sentinel – Alert 228

Alert IDMS-A228
Alert NameIP addresses with open ports attacked from Internet
DescriptionThis alert indicates the top 25 internal computers with exposed ports to the Internet and the type and number of attacks identified by Snort in the last 24 hours.
Severity LevelInformational
Threat Indicator
MITRE ATT&CK TacticsDiscovery
Log sourcesSnort
False Positives
Recommendations