Going below the surface of the ATT&CK matrix.
The Signals Corps blog
Siem-rules April 11, 2022
Siem-rules March 28, 2022
Last weeks post introduced the basics of Sentinel Detection and Hunting rules.
Siem-rules March 14, 2022
I see more-and-more people we work with starting to use Microsoft Sentinel.
Siem-rules February 28, 2022
Put the skills you learned about STIX 2.1 Patterning in last weeks post to the test.
Siem-rules February 14, 2022
Deconstructing STIX Patterns to write effective detection rules.
Siem-rules January 31, 2022
The STIX 2.1 is a schema that defines a taxonomy of cyber threat intelligence that is represented by different Object types.
Siem-rules January 17, 2022
At the end of last year I ran a series of post describing the syntax of Sigma rules (used for threat detection).
Siem-rules December 06, 2021
Translating for your SIEM.
Siem-rules November 29, 2021
How to define what to look for.
Siem-rules November 22, 2021
Now to set where to search.
Siem-rules November 15, 2021
Let’s start with the basics.