Brute-force on VPN gateway admin account — 1 successful login
A medium Cybersecurity scenario on Brute Force.
Start a graded attempt against this scenario. Your response is scored by the same deterministic rubric used across the catalog. Email and evidence content stay hidden until you start.
Launches this exact scenario. One of 5 templates in this Track + Difficulty pool.
catalog id · brute-force-vpn-admin
What this scenario practices, mapped to recognized frameworks.
Educational mapping only. Not a compliance attestation.
- Brute-force detection patterns
- Account lockout and IP-level containment
- Brute Force · Credential AccessT1110 · TA0006MappedHigh confidence
Trains triage of repeated failed-authentication patterns against an exposed VPN endpoint.
- Multi-factor AuthenticationD3-MFAMappedHigh confidence
Trains the MFA-backed defense that resists password-only brute force.
- Disable AccountD3-DIMappedMedium confidence
Trains the conditional account-disable workflow on credential-attack signals.
- Continuous Monitoring · DetectDE.CM · DEMappedHigh confidence
Trains detection of repeated failed-login telemetry.
- IR lifecycle phaseDetection & AnalysisMappedHigh confidence
Trains pattern recognition on authentication logs.
- IR lifecycle phaseContainment, Eradication & RecoveryMappedHigh confidence
Trains source-IP and account-level containment.
- Phishing-Resistant MFA2.EMappedHigh confidence
Trains the MFA baseline that mitigates brute-force success.
- Detection of Unsuccessful Logins2.QMappedHigh confidence
Trains the failed-login detection baseline the scenario exercises.
- Access Control ManagementControl 6MappedHigh confidence
Trains the access-management control invoked under credential attack.
- Audit Log ManagementControl 8MappedMedium confidence
Trains the audit-log review the response depends on.