Brute Force Detection use case is detecting attempts of password guessing to accounts. It provides analysis of successful and unsuccessful authentication events from a wide variety of systems and services, starting at Hypervisor layer and all the way up to API layers. The goal is to determine the unauthorized access attempts using various brute force techniques with modern methods of hiding their actions. Use Case considers brute force attempts with one or more sources, to one or more destinations, for one or more users, performs statistical analysis and user-profiling.
This Use Case significantly complements the capabilities of other Use Cases, such as Windows Security Monitoring, SAP Security Monitoring, VPN Security Monitoring etc.