Gianni
@kustoking.com
📤 99
📥 410
📝 6
Rocking the Christmas vibes with some
#KQL
❤️
over 1 year ago
1
0
0
reposted by
Gianni
Randy
over 1 year ago
#DFIR
and
#ThreatHunting
friends - the technical detail in this blog is pure gold for hunting and writing detections - even if you don't count TA397 high in your threat model, the techniques they use are not unique and the detections still apply:
www.proofpoint.com/us/blog/thre...
0
2
1
reposted by
Gianni
FalconForce
over 1 year ago
Join
@olafhartong.nl
in his journey down the rabbit hole in search of new detection opportunities in the
#Zeek
telemetry embedded in Microsoft's EDR
#MDE
! Detection engineering is sometimes hard … 😎
falconforce.nl/detection-en...
#detectionengineering
#kql
#blueteam
0
5
3
reposted by
Gianni
Dino
over 1 year ago
www.elastic.co/security-lab...
- great read on maturity model for Detection Engineering.
#infosec
#cybersecurity
#cyber
#Detection
loading . . .
Elastic releases the Detection Engineering Behavior Maturity Model — Elastic Security Labs
Using this maturity model, security teams can make structured, measurable, and iteritive improvements to their detection engineering teams..
https://www.elastic.co/security-labs/elastic-releases-debmm
0
2
1
you reached the end!!
feeds!
log in
