M
detecting-rdp-brute-force-attacks
by mukul975
detecting-rdp-brute-force-attacks helps analyze Windows Security Event Logs for RDP brute force patterns, including repeated 4625 failures, 4624 success after failures, NLA-related logons, and source-IP concentration. Use it for Security Audit, threat hunting, and repeatable EVTX-based investigations.
Security Audit
Favorites 0GitHub 6.2k