IIS: 401 and 403 errors

IIS
Ronald (Access42)
You already voted!

Get an overview of 401 and 403 errors, an increase might be an IoC.

<code>index=* sourcetype="ms:iis:default" sc_status=401 OR sc_status=403 |table _time, sc_status, sc_substatus, uri_path | timechart count by sc_status</code>

Share This:

Tagged: Security

Leave A Comment? Click here to cancel reply.

Newest | Active

SplunkNinja

Active 1 week, 1 day ago
patrickvanreck

Active 1 week, 3 days ago
Able1

Active 2 weeks, 4 days ago
markt

Active 3 weeks, 2 days ago
swata12345

Active 4 weeks, 1 day ago