all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SOC147 EventID:94 —  SSH Scan Activity — letsdefend.io

Add to bookmarks
July 27, 2023, 4:45 p.m. | Enes Adışen

System Weakness - Medium systemweakness.com

SOC147 EventID:94 — SSH Scan Activity — letsdefend.io

EventID         :94
Event Time      :Jun, 13, 2021, 04:23 PM
Rule            :SOC147 - SSH Scan Activity
Level           :Security Analyst
Source Address  :172.16.20.5
Source Hostname :PentestMachine
File Name       :nmap
File Hash       :3361bf0051cc657ba90b46be53fe5b36
File Size       :2.82 MB
Device Action   :Allowed

Based on the provided incident report, it appears that a security alert was triggered which indicates a SSH scan activity. The alert specifies that the file “nmap”, which has a file hash of 3361bf0051cc657ba90b46be53fe5b36

It …

action address alert blue team hash incident letsdefendio name pentesting report scan security security alert size soc ssh

Visit resource

More from systemweakness.com / System Weakness - Medium

First AD home lab 2 hours ago | systemweakness.com
access active directory building can +17
3 Steps to protect yourself from Prompt Injection 2 hours ago | systemweakness.com
prompt-engineering prompt injection security
Clocky | TryHackMe Write-up 1 day ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Bypassing Aquatone’s lack of ability to take screenshots of private websites 1 day ago | systemweakness.com
automation cybersecurity hacking pentesting +1
Tuesday Morning Threat Report: Apr 30, 2024 1 day ago | systemweakness.com
analysis artificial intelligence bad customers +21
Staying Anonymous — Ethical Hacking as a Beginner [09] 1 day ago | systemweakness.com
anonymous beginner communication cybersecurity +22
Safeguarding the Virtual Frontier 1 day ago | systemweakness.com
awareness click collaboration critical +24
The Ultimate Guide to CISSP’s Eight Security Territories 1 day ago | systemweakness.com
bug bounty cybersecurity information security information technology +1
Keep your API keys safe (OpenAI, Together AI, etc.) 1 day ago | systemweakness.com
cybersecurity data science encryption generative-ai-tools +1

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Principal Business Value Consultant

@ Palo Alto Networks | Chicago, IL, United States
View on infosec-jobs.com

Cybersecurity Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

Penetration Testing Engineer- Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com

Internal Audit- Compliance & Legal Audit-Dallas-Associate

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com

Threat Responder

@ Deepwatch | Remote
View on infosec-jobs.com
View more jobs