Latest Articles
The Detection & Response Chronicles: Covert Operations Through QEMU
Adversaries have always relied on legitimate tools to carry out their attacks. These tools are already trusted by security solutions,…
Detection Engineering: Practicing Detection-as-Code – Tuning – Part 8
In Part 7, we showcased how we can leverage automation to continuously monitor the performance and trigger rate of our…
Detection Engineering: Practicing Detection-as-Code – Deployment – Part 6
The deployment phase is one of the most challenging steps in the Detection Development Life Cycle due to its implementation…
ConsentFix (a.k.a. AuthCodeFix): Detecting OAuth2 Authorization Code Phishing
ConsentFix (a.k.a.AuthCodeFix) is the latest variant of the fix-type phishing attacks, initially identified by Push Security. In this technique, the…
The Detection & Response Chronicles: Exploring Telegram Abuse
Adversaries utilizing popular messaging apps throughout different attack phases is nothing new. Telegram, in particular, has constantly been the subject…
Detection Engineering: Practicing Detection-as-Code – Monitoring – Part 7
In this part, we are going to introduce automation to effectively monitor our deployed detections. By setting up automations at…
Detection Engineering: Practicing Detection-as-Code – Versioning – Part 5
Versioning in the detection library is crucial for maintaining traceability and tracking changes to individual detections and content packs. It…
Detection Engineering: Practicing Detection-as-Code – Documentation – Part 4
Sufficiently documenting our detections is essential in detection engineering as it provides context around the the purpose, detection logic, and…
Detection Engineering: Practicing Detection-as-Code – Validation – Part 3
In this part, we focus on implementing validation checks to improve consistency and ensure a minimum level of quality within…
Detection Engineering: Practicing Detection-as-Code – Repository – Part 2
This is the second part of the Practicing Detection-as-Code series, where we will cover some basic elements of designing a…