Port Scan Detected

LetsDefend Monitoring Alert

Port Scan Detected

Dec, 22, 2023, 06:45 AM

Event ID: 211

Event Time: Dec, 22, 2023, 06:45 AM

Rule Name: SOC249 - Port Scan Detected

Alert Type: Unauthorized Access

MITRE Technique:

T1190 - Initial Access - Exploit Public-Facing Application,

T1552.001 - Credential Access - Unsecured Credentials: Credentials In Files,

T1595 - Reconnaissance - Active Scanning,

T1595.002 - Reconnaissance - Active Scanning: Vulnerability Scanning,

Severity: Low

Incident Responder

45305 Catalina ct. Suite 150, Sterling VA 20166