12 lines
665 B
XML
12 lines
665 B
XML
<!-- Modify it at your will. -->
|
|
<group name="authentication_failures,gdpr_IV_32.2,gdpr_IV_35.7.d,gpg13_7.1,hipaa_164.312.b,nist_800_53_AC.7,nist_800_53_AU.14,nist_800_53_AU.6,pci_dss_10.2.4,pci_dss_10.2.5,pci_dss_10.6.1,tsc_CC6.1,tsc_CC6.8,tsc_CC7.2,tsc_CC7.3,">
|
|
<rule id="81615" level="15" frequency="10" timeframe="45" ignore="240" overwrite="yes">
|
|
<if_matched_sid>81614</if_matched_sid>
|
|
<same_field>data.remip</same_field>
|
|
<description>Fortigate: Multiple firewall SSL VPN failed login events from same source.</description>
|
|
<mitre>
|
|
<id>T1110</id>
|
|
<id>T1133</id>
|
|
</mitre>
|
|
</rule>
|
|
</group> |