Potential Directory Harvest Attack

Vendor Documentation

https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_0100110.html

Classification

Rule Name	Rule Type	Classification	Common Event
Potential Directory Harvest Attack	Base Rule	Security/Attack	General Attack Activity

Mapping with LogRhythm Schema

Device Key in Log Message	LogRhythm Schema	Data Type	Schema Description
	<severity>	Text\String
	<sip>	IP Address
	<sname>	Text\String
ICID	<processid>	Number
	<object>	Text\String
	<threatname>	Text\String
	<quantity>	Number

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.