I am interested in having Active Directory integration to monitor for brute force attacks within my environment. It would be beneficial if the system could proactively report on failed login events, specifically those resulting in 4625 event codes from external networks. This feature would enhance our security monitoring capabilities by leveraging data pulled through SIEM.