dhyey0112 issues

Repositories
Issues
Comments

Results 1 issues of


                                            dhyey0112

EQL querry (Missing IP Info)

I’m building an Elastic detection rule to identify when a user logs in and subsequently modifies their MFA (StrongAuthenticationMethod). The goal is to detect suspicious activity patterns like: Account compromise...

community

stale