LetsDefend Monitoring Alert

Possible ICMP Tunneling Detected

Sep, 12, 2023, 10:27 AM

Event ID: 183

Event Time: Sep, 12, 2023, 10:27 AM

Rule Name: SOC223 - Possible ICMP Tunneling Detected

Alert Type: Unauthorized Access

MITRE Technique:
T1095 - Command and Control - Non-Application Layer Protocol,

Severity: High

Incident Responder

2024 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166