Sudhanshu ManeSkills Showcase 1: Splunk for SOCThis blog post is to showcase my skills of Splunk as a future SOC analyst L1. This article outlines my expertise in scenario based…1d ago1
Anton ChuvakininAnton on SecurityMigrate Off That Old SIEM Already!This is cross-posted from Google Cloud Community site, and written jointly with Dave Herrald.Feb 53
Emmanuel Akobe-AjiboluStep-by-step setup of Wazuh SIEM on Ubuntu 22.04.3 LTS.Welcome to our comprehensive guide on installing Wazuh, a powerful open-source security information and event management (SIEM) solution…Jan 15Jan 15
John BenavidesFilter CEF logs into Multiple Sentinel tables (Manage Firewall Ingestion)Why should we filter our logs? 🤷🏽♂️2d ago2d ago
Alex TeixeirainDetect FYIUnder the Radar: Your Detections are missing logs — every single runIn case you've been developing custom detection content for a while, you likely know what is one of the most critical steps during the…Jan 93Jan 93
Sudhanshu ManeSkills Showcase 1: Splunk for SOCThis blog post is to showcase my skills of Splunk as a future SOC analyst L1. This article outlines my expertise in scenario based…1d ago1
Anton ChuvakininAnton on SecurityMigrate Off That Old SIEM Already!This is cross-posted from Google Cloud Community site, and written jointly with Dave Herrald.Feb 53
Emmanuel Akobe-AjiboluStep-by-step setup of Wazuh SIEM on Ubuntu 22.04.3 LTS.Welcome to our comprehensive guide on installing Wazuh, a powerful open-source security information and event management (SIEM) solution…Jan 15
John BenavidesFilter CEF logs into Multiple Sentinel tables (Manage Firewall Ingestion)Why should we filter our logs? 🤷🏽♂️2d ago
Alex TeixeirainDetect FYIUnder the Radar: Your Detections are missing logs — every single runIn case you've been developing custom detection content for a while, you likely know what is one of the most critical steps during the…Jan 93
John BenavidesInstall & Configure Azure Monitor Agent (AMA) for Linux — Data Collection Rules & CEF CollectorWhat is the Azure Monitor Agent? 🤷🏽♂️2d ago
Alex TeixeirainDetect FYISysmon: a viable alternative to EDR?I've been recently engaged in workshops with distinct clients from completely different industries/verticals and this is a recurring topic.Jul 48