Techniques
Sample rules
Spike in host-based traffic
- source: elastic
- technicques:
Description
A machine learning job has detected a sudden spike in host based traffic. This can be due to a range of security issues, such as a compromised system, DDoS attacks, malware infections, privilege escalation, or data exfiltration.
Detection logic