Security Hub

Bring your software development workflows to security

logo-bruteforce

Account brute force

Signals & Triggers

On failed authentication
If an unusual volume is detected on a small number of user accounts

Actions

  • Log the malicious request Log the malicious request
  • Report an incident Report an incident

Notifications

  • Send an email to all team members Send an email to all team members
  • Send a Slack notification. Send a Slack notification.
  • POST to your Webhook. POST to your Webhook.
  • Create an incident on PagerDuty (coming soon) Create an incident on PagerDuty (coming soon)

Details

A brute force attack consists in an attacker attempting to break an account by testing a large number of passwords hoping to eventually manage to break in.

Highlighting such attempts is often done at the expense of parsing the application logs, which can end up being quite cumbersome and very time consuming.

Sqreen can highlight such attacks without any effort on your end and provide you with the compromised accounts, should the attacker succeed to log in one or multiple accounts.

Advanced details

Sqreen SDK enables you to track all login activities happening in your app.

Every minute Sqreen computes the signals and looks for unusual failed and successful login tentatives. When Sqreen detects several failed login tentatives on targeted accounts it will consider it as a Brute Force attack.

The signals computation happens on Sqreen’s backend based on the signals collected on all the instances of your applications. This collection happens asynchronously and is not slowing down your application performance.

Language support

  • Ruby
  • Node.js
  • PHP
  • Python
  • Java

Data collected by Sqreen

Signals

Authentication (Sqreen SDK)


Built for developers and modern apps

Get up and running in minutes just by installing our lightweight library. Enable plugins in just a couple of clicks.

  • Node.js
  • Ruby
  • PHP
  • Python
  • Java
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9

$ npm install --save sqreen

$ echo '{ "token": "your token" }' > sqreen.json

 

// This should be the first line of your app

require('sqreen');

$ echo "gem 'sqreen'" >> Gemfile

$ bundle install

$ echo "token: your token" > config/sqreen.yml

$ curl -s https://download.sqreen.io/php/install.sh > sqreen-install.sh && bash sqreen-install.sh your token

$ pip install sqreen

$ echo -e "[sqreen]\ntoken: your token" > sqreen.ini

 

# Insert at the top of your app file (typically wsgi.py or app.py)

import sqreen

sqreen.start()

$ curl https://download.sqreen.io/java/sqreen-latest-all.jar -o sqreen.jar

 

// Add JVM startup options:

-javaagent:/path/to/sqreen.jar -Dsqreen.token={{your token}}

Build amazing products. Keep them safe.

3 min installation · Try all features for 14 days · No credit card required Sign up Request demo