2023-01-12 16:04:28 +00:00
|
|
|
line: Sep 19 18:33:22 scw-d95986 sshd[24347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.2.3.4
|
|
|
|
├ s00-raw
|
2023-02-14 14:36:08 +00:00
|
|
|
| └ 🟢 crowdsecurity/syslog-logs (+12 ~9)
|
2023-01-12 16:04:28 +00:00
|
|
|
├ s01-parse
|
2023-11-24 14:57:32 +00:00
|
|
|
| └ 🟢 crowdsecurity/sshd-logs (+8)
|
2023-01-12 16:04:28 +00:00
|
|
|
├-------- parser success 🟢
|
|
|
|
├ Scenarios
|
|
|
|
├ 🟢 crowdsecurity/ssh-bf
|
|
|
|
├ 🟢 crowdsecurity/ssh-bf_user-enum
|
|
|
|
├ 🟢 crowdsecurity/ssh-slow-bf
|
|
|
|
└ 🟢 crowdsecurity/ssh-slow-bf_user-enum
|