LetsDefend Monitoring Alert
Possible ICMP Tunneling Detected
Sep, 12, 2023, 10:27 AM
Event ID: 183
Event Time: Sep, 12, 2023, 10:27 AM
Rule Name: SOC223 - Possible ICMP Tunneling Detected
Alert Type: Unauthorized Access
MITRE Technique:
T1095 - Command and Control - Non-Application Layer Protocol,
Severity: High
Incident Responder