API scan detected on service

이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Goal

Detect when your API endpoints are being probed by a third party. The goal of the attacker may be to find undocumented APIs or functionality.

Strategy

Monitors the HTTP errors produced by the application in API endpoints and triggers when an elevated rate is detected.

The signal is set to LOW severity, as the error produced by an API endpoint depends on the actual implementation of each application.

Triage and response

  1. Review the 4xx errors to detect if your application is temporarily misbehaving.
  2. Consider temporarily blocking the attacking IP(s) to prevent them from overloading your systems or identifying confidential resources.
PREVIEWING: mcretzman/DOCS-9337-add-cloud-info-byoti