Homepage
Open in app
Sign in
Get started
Tagged in
Detection Engineering
FalconForce
A team of highly specialized security professionals
More information
Followers
689
Elsewhere
More, on Medium
Detection Engineering
Olaf Hartong
in
FalconForce
Nov 10, 2023
FalconHound, attack path management for blue teams
Read more…
24
1 response
Olaf Hartong
in
FalconForce
Oct 13, 2023
Microsoft Defender for Endpoint Internals 0x05 — Telemetry for sensitive actions
Read more…
72
Olaf Hartong
in
FalconForce
Feb 10, 2023
Microsoft Defender for Endpoint Internals 0x04 — Timeline telemetry
Read more…
82
4 responses
Henri Hambartsumyan
in
FalconForce
Oct 14, 2022
FalconFriday — Detecting ADCS web services abuse — 0xFF20
Read more…
12
Olaf Hartong
in
FalconForce
Jul 8, 2022
Microsoft Defender for Endpoint Internals 0x03 — MDE telemetry unreliability and log augmentation
Read more…
65
1 response
Olaf Hartong
in
FalconForce
Jul 1, 2022
Microsoft Defender for Endpoint Internals 0x02 — Audit Settings and Telemetry
Read more…
87
1 response
Henri Hambartsumyan
in
FalconForce
Jun 17, 2022
FalconFriday — Detecting UnPACing and shadowed credentials— 0xFF1E
Read more…
8
1 response
Jos van der Peet
in
FalconForce
Dec 17, 2021
FalconFriday —Monitoring for public shares — 0xFF1A
Read more…
1
1 response
Olaf Hartong
in
FalconForce
Oct 15, 2021
Sysmon vs Microsoft Defender for Endpoint, MDE Internals 0x01
Read more…
278
Henri Hambartsumyan
in
FalconForce
Oct 1, 2021
FalconFriday — Stealing and detecting Azure PRT cookies — 0xFF18
Read more…
7
