Security Links
This vulnerability exists in Shilpi Client Dashboard due to missing restrictions for incorrect login attempts on its API based login. A remote attacker could exploit this vulnerability by conducting a brute force attack on password, which could lead to gain unauthorized access to other user accounts.
#TTP
NEW
Technique Inference Engine

The Technique Inference Engine (TIE) suggests techniques an adversary is likely to have used based on a set of observed techniques. Cyber defenders can use this data to prioritize specific techniques for threat hunting, and incident responders can use this information to highlight important lateral movement and persistence behaviors that are essential to threat eviction and recovery.

https://center-for-threat-informed-defense.github.io/technique-inference-engine/#/
MITRE ATT&CK

a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations.

https://attack.mitre.org/