Describe how you would build a detection pipeline to identify credential stuffing attacks against Astranis’s internal mission operations portal.