-
Detects LDP failures which may be indicative of brute force attacks to manipulate MPLS labels
Read More -
Detects BGP failures which may be indicative of brute force attacks to manipulate routing.
Read More -
Detects juniper BGP missing MD5 digest. Which may be indicative of brute force attacks to manipulate routing.
Read More -
Detects the configuration of a new ISATAP router on a Windows host. While ISATAP is a legitimate Microsoft technology for IPv6 transition, unexpected or unauthorized ISATAP router configurations could indicate a potential IPv6 DNS Takeover attack using tools like mitm6. In such attacks, adversaries advertise themselves as DHCPv6 servers and set malicious ISATAP routers to intercept traffic. This detection should be correlated with network baselines and known legitimate ISATAP deployments in your environment.
Read More -
Potential Suspicious Activity Using SeCEdit
Oct 23, 2025 · attack.collection attack.discovery attack.persistence attack.defense-evasion attack.credential-access attack.privilege-escalation attack.t1562.002 attack.t1547.001 attack.t1505.005 attack.t1556.002 attack.t1562 attack.t1574.007 attack.t1564.002 attack.t1546.008 attack.t1546.007 attack.t1547.014 attack.t1547.010 attack.t1547.002 attack.t1557 attack.t1082 ·Detects potential suspicious behaviour using secedit.exe. Such as exporting or modifying the security policy
Read More