Rule Category

POLICY-OTHER --

Alert Message

POLICY-OTHER Inedo BuildMaster web server login with default credentials attempt

Rule Explanation

This event is generated when someone tries to login to the Inedo BuildMaster web server with default credentials. Impact: Admin access to the BuildMaster web server Details: This rule checks for an attempt to login to the BuildMaster web server with default credentials. Ease of Attack: Simple; metasploit module is publicly-available

What To Look For

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

MITRE ATT&CK Framework

Tactic:

Technique:

For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org

Additional Links

Rule Vulnerability

CVE Additional Information