Unusual Volume of Network Activity

Description

Detects unusual network traffic that may be indicative of a DoS attack as indicated by a high number of unique sources or a high volume of firewall packets

Content Mapping

This content is not mapped to any local saved search. Add mapping


Use Case

Insider Threat, Application Security, Advanced Threat Detection

Category

Data Exfiltration, Denial of Service

Alert Volume

Detects unusual network traffic that may be indicative of a DoS attack as indicated by a high number of unique sources or a high volume of firewall packets

SPL Difficulty

Advanced

Journey

Stage 2

Data Sources

Network Communication