By This Author
Emu-lation: Validating detection for Gootloader with Atomic Red Team Emu-lation: Validating detection for Gootloader with Atomic Red Team
October 25, 2023
Testing and validation Crude OilRig: Drilling into MITRE’s Managed Service Evaluations Crude OilRig: Drilling into MITRE’s Managed Service Evaluations
November 9, 2022
Threat detection Better know a data source: Process creation Better know a data source: Process creation
September 13, 2022
Threat detection Better know a data source: Logon sessions Better know a data source: Logon sessions
July 19, 2022
Threat detection Detecting suspicious email forwarding rules in Office 365 Detecting suspicious email forwarding rules in Office 365
May 31, 2022
Threat detection Uncompromised: When REvil comes knocking Uncompromised: When REvil comes knocking
March 16, 2022
Incident response Run Atomic Red Team tests with Microsoft Defender for Endpoint Run Atomic Red Team tests with Microsoft Defender for Endpoint
December 15, 2021
Testing and validation When Dridex and Cobalt Strike give you Grief When Dridex and Cobalt Strike give you Grief
August 5, 2021
Threat intelligence