Jos van der PeetinFalconForceFalconFriday — Using public intelligence feeds to improve detections — 0xFF22Today, we will look at how to incorporate public datasets to improve our detections. We will create Sentinel watchlists, build rules…Dec 16, 2022Dec 16, 2022
Jos van der PeetinFalconForceFalconFriday —Monitoring for public shares — 0xFF1AIn this blog we will explore the possibilities to use Microsoft Sentinel to monitor a windows environment for the creation of public…Dec 17, 20211Dec 17, 20211
Jos van der PeetinFalconForceFalconFriday — Code execution through Microsoft SQL Server and Oracle Database — 0xFF19In this blog we will discuss how you can detect abuse of these code execution features of Microsoft and Oracle databases…Nov 26, 2021Nov 26, 2021