Cyb3rHawk

Oct 28, 2021

Detection through defined (MY) process

A common question among SIEM content/detection creators is “What is the process that needs to be followed to create a detection?” There are different methods/methodologies/frameworks that are published by some of the great content creators. Here I will not be re-iterating on those but rather will document the process I…

Detection Engineering

2 min read

Oct 28, 2021

Analyst’s Problems as a Service (APaaS)

There are many blogs and industry experts who have discussed issues of a SIEM, how it can fail, and what it is lacking. I’m worked and am working in a SOC, so I understand most of the issues. One thing I see very rarely are discussions on how it will…

Apaas

2 min read

Love DFIR, Threat Hunting, Detection Engineering Space. Acquired some good experience through certs like GCFA, GNFA, GCDA, GCIH.

Following

Prashant Lakhera
Luke Stephens (@hakluke)
Nir Chako
Matthew Aubert

Help
Status
Writers
Blog
Careers
Privacy
Terms
About
Knowable