- Secure Shell (SSH) is a standard protocol for secure terminal connections, commonly used to control Linux systems located remotely.
- Unlike Windows operating systems, which are mainly used by individual users for desktop purposes, Linux systems primarily serve as servers providing services such as web, database, FTP, and DNS.
- Both Windows and Linux require remote control tools when functioning as servers. Windows supports Remote Desktop Service (RDP) for this purpose, allowing administrators to control Windows systems remotely.
- The article discusses the use of AhnLab EDR to detect attacks targeting Linux SSH services.
- For more information, refer to the original post on the ASEC BLOG: AhnLab EDR을 활용한 리눅스 SSH 서비스 대상 공격 탐지.
https://asec.ahnlab.com/ko/65973/