2020-05-15 09:39:16 +00:00
|
|
|
# ssh bruteforce
|
|
|
|
type: leaky
|
|
|
|
debug: true
|
|
|
|
name: test/simple-leaky
|
|
|
|
description: "Simple leaky"
|
|
|
|
filter: "evt.Line.Labels.type =='testlog'"
|
2020-08-05 09:39:54 +00:00
|
|
|
leakspeed: "0.5s"
|
|
|
|
capacity: 2
|
2020-05-15 09:39:16 +00:00
|
|
|
groupby: evt.Meta.source_ip
|
|
|
|
labels:
|
|
|
|
type: overflow_1
|
|
|
|
|