Chris Martin (@thatsiemguy)From Sandbox to SIEM: Replaying Windows Events using the Chronicle APIThis blog post explores how to replay Windows Event Logs into Chronicle SIEM, using Sandbox data from Google Threat Intel.3d ago
Chris Martin (@thatsiemguy)observIQ BindPlane, the OTEL Agent, and Google SecOpsLearn about the Bindplane OP and OpenTelemetry (OTel) Agent available now for users of Google SecOps.May 211
Chris Martin (@thatsiemguy)Adding keyboard bindings to SecOps using ShortkeysHow to add custom keybindings in SecOps using the Shortkeys web browser extension.Aug 19Aug 19
Chris Martin (@thatsiemguy)Data RBAC in Chronicle SIEMIn this post I explore Role Based Access Control (RBAC) functionality available within Chronicle SIEM, part of the Google SecOps platform…Jul 231Jul 231
Roshan KumarGoogle Security Operations (Chronicle): Redefining SIEM and SOARNot a Medium member? Click this link to read full article.Aug 18Aug 18
Chris Martin (@thatsiemguy)From Sandbox to SIEM: Replaying Windows Events using the Chronicle APIThis blog post explores how to replay Windows Event Logs into Chronicle SIEM, using Sandbox data from Google Threat Intel.3d ago
Chris Martin (@thatsiemguy)observIQ BindPlane, the OTEL Agent, and Google SecOpsLearn about the Bindplane OP and OpenTelemetry (OTel) Agent available now for users of Google SecOps.May 211
Chris Martin (@thatsiemguy)Adding keyboard bindings to SecOps using ShortkeysHow to add custom keybindings in SecOps using the Shortkeys web browser extension.Aug 19
Chris Martin (@thatsiemguy)Data RBAC in Chronicle SIEMIn this post I explore Role Based Access Control (RBAC) functionality available within Chronicle SIEM, part of the Google SecOps platform…Jul 231
Roshan KumarGoogle Security Operations (Chronicle): Redefining SIEM and SOARNot a Medium member? Click this link to read full article.Aug 18
Chris Martin (@thatsiemguy)Tuning YARA-L Rules in Chronicle SIEMAn in-depth guide on how to evalute and tune YARA-L rules in Chronicle SIEM.Feb 51
Dan Dye's Dwell TimeinGoogle Cloud - CommunityEvents, and Lists, and Rules, oh my!As a “Noogler” (new Google employee) on the Cloud Security team, I have configured a lab environment with a fresh instance of Google…Aug 3
Chris Martin (@thatsiemguy)Aggregate Queries in UDM SearchGoogle SecOps has introduced UDM Stats, a powerful new feature in preview that brings aggregate queries to UDM Search using YL2.Jun 16