SSH - brute forcing

georgio · March 28, 2025, 1:49pm

Hey there

I am wondering if someone implemented Login_By_Password_Guesser from the default ssh-bruteforcing since the script is not complete.

Thank you

georgio · April 9, 2025, 5:45am

Any thoughts ? This is the part of the script about the “Login_By_Password_Guesser”

export {
redef enum Notice::Type += {
## Indicates that a host previously identified as a “password
## guesser” has now had a successful login
## attempt. This is not currently implemented.
Login_By_Password_Guesser,
};

Topic		Replies	Views
SSH login brute force Zeek	11	117	May 6, 2022
Zeek is not always detecting outcome of SSH connections. Zeek	3	173	May 6, 2022
SSH:ignore_guessers Zeek	1	56	May 6, 2022
Notice.log logs a Password_Guessing attempt but no logs in conn.log Zeek	3	85	May 6, 2022
Detect-bruteforcing.zeek does not work properly Zeek	4	256	May 8, 2024

SSH - brute forcing

Related topics