Detection Engineering

Feeds to Scour
SubscribedAll
Scoured 87 posts in 26.4 ms

Automating Threat Hunts: Building a SOC on a Startup Budget

 🚨Incident Response  Content type: Blog
dev.to··DEV

Detecting and containing AI-powered threats with Google Security Operations agents

 🔐Infosec  Content type: Blog
cloud.google.com·

UK Cybercrime Journal: Arup Group Breached by FulcrumSec

 🔐Infosec  Content type: Blog

How Blue Teams Use Sniffnet for Threat Hunting and Incident Response

 🚨Incident Response  Content type: Blog
medium.com
·

supunhg/filo-go: High-performance file forensics and digital intelligence platform written in Go.

 🌐Open Source  Content type: Code
github.com··DEV

EventSentry 6.0: Azure logs, Sigma rules, OAuth, and log signing

 🛡️Sigma Rules
4sysops.com·

Learn Threat Hunting for Free: Hands-On Labs in a Real Elastic SIEM

 🔎threat hunting  Content type: Blog
medium.com
·

The Glitch in the Code: Trapping AC Between the SIEM and the Wire

 🦠Malware Analysis  Content type: Blog
medium.com
·

Hypotheses, telemetry, and human judgment: Inside Cisco Talos Threat Hunting

 🔎threat hunting  Content type: Blog

The SIEM Isn't Dying. Its Job Is Splitting in Two.

 🚨Incident Response  Content type: Blog
dev.to··DEV

Only 10% of SOCs Say They’re Getting Excellent Value From AI. Here’s What the Second Wave Has to Deliver

 🚨Incident Response
thehackernews.com·

dougburks/ohmypcap: OhMyPCAP is a FOSS web application for analyzing PCAP files using Suricata and other files using YARA. View network alerts and file alerts, browse network metadata (DNS, HTTP, TLS, flows), extract ASCII transcripts, view per-packet hexdumps, and carve individual streams.

 📦Containerization  Content type: Code
github.com·

Soap Box: Detection and response in the AI age

 🚨Incident Response
risky.biz·

TryHackMe — Boogeyman 3 — Analysis With Splunk

 👁️SIEM Evasion  Content type: Blog
medium.com
·

How to Detect C2 Beaconing in Elastic SIEM with ES|QL

 🔒Information Security  Content type: Blog
medium.com
·

Agentic SOCs: The public sector’s new AI cybersecurity defense

 💻WMI Abuse  Content type: Blog
elastic.co·

detflow: A Detection-Engineering Copilot You Can pip install

 💬NLP  Content type: Blog
dev.to··DEV

ThreatWire: A Python Library for Real-Time Network Threat Detection.

 💻WMI Abuse  Content type: Blog
dev.to··DEV

Winning the cyber marathon with Tony Giandomenico

 🔎threat hunting  Content type: Blog

Hypotheses, telemetry, and human judgment: Inside Cisco Talos Threat Hunting

 🔎threat hunting
malware.news·

No more posts from buckman's subscribed feeds.

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help