all InfoSec news
SOC147 EventID:94 — SSH Scan Activity — letsdefend.io
July 27, 2023, 4:45 p.m. | Enes Adışen
System Weakness - Medium systemweakness.com
SOC147 EventID:94 — SSH Scan Activity — letsdefend.io
EventID :94
Event Time :Jun, 13, 2021, 04:23 PM
Rule :SOC147 - SSH Scan Activity
Level :Security Analyst
Source Address :172.16.20.5
Source Hostname :PentestMachine
File Name :nmap
File Hash :3361bf0051cc657ba90b46be53fe5b36
File Size :2.82 MB
Device Action :Allowed
Based on the provided incident report, it appears that a security alert was triggered which indicates a SSH scan activity. The alert specifies that the file “nmap”, which has a file hash of 3361bf0051cc657ba90b46be53fe5b36
It …
action address alert blue team hash incident letsdefendio name pentesting report scan security security alert size soc ssh
More from systemweakness.com / System Weakness - Medium
Analyzing WSH RAT
1 day, 15 hours ago |
systemweakness.com
The Essential Cybersecurity Mindset
1 day, 15 hours ago |
systemweakness.com
Secure Architecture: Infrastructure Controls
1 day, 15 hours ago |
systemweakness.com
Data Breaching in Secure Companies
1 day, 15 hours ago |
systemweakness.com
How Prompt Injection Can Steal Your Data
3 days, 19 hours ago |
systemweakness.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC