What programs/scripts/techniques/etc. are used to detect the following on an IIS website.
- Brute Force Logins
- Password Spraying
- The above techniques from distributed IP addresses
SIEM and Enterprise log management platforms have this ability. However, many cannot tap into this upper echelon technology. I'd like this thread to be a resource for those looking to protect their website from these techniques.
Full disclosure, I built a PowerShell module to specifically address this as I wasn't able to find a suitable solution. Hopefully, folks will chime in with their own solutions. I'll respond later with details about the solution I built.