techy
@techy.detectionengineering.net
Creator of Detection Engineering Weekly (https://detectionengineering.net), Sec Research/Intel/Detection @ Datadog
This post is sponsored by detections.ai!
Tired of manually writing detection rules? detections.ai uses AI agents to convert threat intel into SIGMA, SPL, KQL, YARA rules automatically. Join 7,500+ detection engineers in the community. Use code "DEW" to get started: detections.ai
Tired of manually writing detection rules? detections.ai uses AI agents to convert threat intel into SIGMA, SPL, KQL, YARA rules automatically. Join 7,500+ detection engineers in the community. Use code "DEW" to get started: detections.ai
detections.ai
View and interact with detection rules shared by the community
detections.ai
September 24, 2025 at 12:39 PM
This post is sponsored by detections.ai!
Tired of manually writing detection rules? detections.ai uses AI agents to convert threat intel into SIGMA, SPL, KQL, YARA rules automatically. Join 7,500+ detection engineers in the community. Use code "DEW" to get started: detections.ai
Tired of manually writing detection rules? detections.ai uses AI agents to convert threat intel into SIGMA, SPL, KQL, YARA rules automatically. Join 7,500+ detection engineers in the community. Use code "DEW" to get started: detections.ai
Threats: Microsoft seizes 338 RaccoonO365 sites, domains and panels, Two teenagers charged for London transport outage from August 2024, BlackLotus Labs latest research on SystemBC, Oliver Smith TTP updates for DPRK's BeaverTail malware family
September 24, 2025 at 12:39 PM
Threats: Microsoft seizes 338 RaccoonO365 sites, domains and panels, Two teenagers charged for London transport outage from August 2024, BlackLotus Labs latest research on SystemBC, Oliver Smith TTP updates for DPRK's BeaverTail malware family
* Garv Kamra's first foray into writing SIEM detections
* Jacob Zalesky first blog post ever (!) on threat hunting ideas in AWS
* Jacob Zalesky first blog post ever (!) on threat hunting ideas in AWS
September 24, 2025 at 12:39 PM
* Garv Kamra's first foray into writing SIEM detections
* Jacob Zalesky first blog post ever (!) on threat hunting ideas in AWS
* Jacob Zalesky first blog post ever (!) on threat hunting ideas in AWS
* Ryan Tomcik on co-occurring detection ideation using composite rules in Google SecOps
* Amitai Cohen's take on effective work & task prioritization with a gaming analogy near and dear to my heart (RTS games baby!)
* Hanif Kurniawan A. helps readers detect log source outages in Wazuh
* Amitai Cohen's take on effective work & task prioritization with a gaming analogy near and dear to my heart (RTS games baby!)
* Hanif Kurniawan A. helps readers detect log source outages in Wazuh
September 24, 2025 at 12:39 PM
* Ryan Tomcik on co-occurring detection ideation using composite rules in Google SecOps
* Amitai Cohen's take on effective work & task prioritization with a gaming analogy near and dear to my heart (RTS games baby!)
* Hanif Kurniawan A. helps readers detect log source outages in Wazuh
* Amitai Cohen's take on effective work & task prioritization with a gaming analogy near and dear to my heart (RTS games baby!)
* Hanif Kurniawan A. helps readers detect log source outages in Wazuh
I love it when you guys go deep into a topic. The deepseek episode was a great example.
February 4, 2025 at 11:10 PM
I love it when you guys go deep into a topic. The deepseek episode was a great example.
Weekly: 1 hour
Deep dives: 2-3 hours
Deep dives: 2-3 hours
February 4, 2025 at 9:33 PM
Weekly: 1 hour
Deep dives: 2-3 hours
Deep dives: 2-3 hours
Browns coming in last yet again
January 22, 2025 at 2:40 AM
Browns coming in last yet again
Bout to go wheels up!
January 9, 2025 at 9:34 PM
Bout to go wheels up!
There has been for years! Just starting to see it be more impactful
January 8, 2025 at 2:45 AM
There has been for years! Just starting to see it be more impactful
Reposted by techy
🎉 link and docs and details: nims-template.notion.site
Notion Incident Management System (NIMS) | Notion
Use the Template
nims-template.notion.site
January 7, 2025 at 12:49 AM
🎉 link and docs and details: nims-template.notion.site
Hi wanna “make plans”?
December 31, 2024 at 3:29 PM
Hi wanna “make plans”?