#threatdetection
Auto-Cleaning Lists in Chronicle SIEM
Automate list maintenance in Chronicle SIEM by removing expired entries.
Endpoint Security Reflections feat. EDR and EDR-like Tools
Exploring the pros and cons of EDR and alternative endpoint solutions.
Integrating MISP with Chronicle SIEM
Streamline the integration between CTI and CSIRT in an automated and efficient way.
Debunking Threat Detection Myths
Challenging myths in threat detection analytics for enhanced security operations.
Improving SecOps Beyond Tuning Analytics
The Threat Detection Fundamental Dilemma
Exploring the dilemma in threat detection: Precision vs. Recall for analytics.
MITRE ATT&CK 101: Bridging the Gap
Guide to MITRE ATT&CK with history and context for better usage.
Testing The Logfile Navigator
Exploring log analysis with lnav tool: challenges, insights, and tips.
Getting Real About MITRE ATT&CK
Understanding MITRE ATT&CK and using it in your favor.
Understanding Severity and Priority
Uncover optimal Detection Rule settings for consistent, efficient alerts.
Intelligence-Driven Incident Response
Discover how integrating CTI enhances Threat Detection and CSIRT.
Effective Detection Rules for Net and Port Scans
Effective network and port scan detection.
