Detection Engineering Weekly
Subscribe
Sign in
Home
Notes
Field Manual
Archive
Leaderboard
About
DEW #137 - AI Agents For Security By Security, Free Sigma training & JA4 for beginners
The Louvre's WiFi password should've been ervouL
Nov 12
•
Zack Allen
16
1
3
DEW #136 - ATT&CK V18 deep dive, Cyberslop @ MIT & Aisuru repurposes to residential proxies
Action Bronson voice: "I hunt cyberslop on my arch box, Vicuña pajamas draped, terrace views in Amalfi"
Nov 5
•
Zack Allen
8
DEW #135 - Chaos Detection Engineering, Connecting Policy to IR playbooks & Spooky AWS Policies
spooky scary detection rules keepin' me up at night
Oct 29
•
Zack Allen
7
3
Most Popular
View all
Detection Engineering Field Manual #1 - What is a Detection Engineer?
Jun 20
•
Zack Allen
33
3
2
Detection Field Manual #3 - What is detection rule efficacy?
Jul 18
•
Zack Allen
27
1
3
The Security Research Product Function
Mar 26
•
Zack Allen
17
1
2
Det. Eng. Weekly #113 - Can I get a rule, and can you make it last forever?
May 14
•
Zack Allen
15
2
3
DEW #128 - AI Detection Engineering Uncertainty, 3D Threat Hunting and Salesloft Drift Shenanigans
Sep 10
•
Zack Allen
13
1
3
Det. Eng. Weekly #109 - I’m making a Hinge for detection engineers
Apr 9
•
Zack Allen
12
1
Latest
Top
Discussions
DEW #134 - Prioritizing Critical Assets, AI SOC means MORE alerts and Microsoft CoPilot Phishing
Have you tried just being 100% accurate all the time you goober?
Oct 22
•
Zack Allen
9
3
DEW #133 - Redefining Security Visibility, TTP-First Hunting & F5 breach
we should define a standard to unite all standards
Oct 16
•
Zack Allen
5
2
DEW #132 - Linux Rootkits Evolution, LLM Rule Evals, Oracle 0-day exploitation
༼ つ ಥ_ಥ ༽つ noo all my rootkits are obsolete ლ(ಠ益ಠლ)
Oct 8
•
Zack Allen
7
3
DEW #131 - ❄️New EDR bypass❄️, CTI Poverty, AWS Infra Canaries & Hunting in IMDS
🫂GET IN🫂CLICK🫂HUNTING🫂NEWS🫂THREAT ACTOR HARMONY🫂DRAMA🫂RULES🫂IOC JUICERS
Oct 1
•
Zack Allen
11
DEW #130 - God-mode Azure vulnerability, Composite Detections & Detection Observability
power overwhelming
Sep 24
•
Zack Allen
8
1
DEW #129 - Malicious browser extensions, npm gets pwned (again) and AI weaponizing CVEs
At least they had 2FA right?? right??????
Sep 17
•
Zack Allen
7
1
1
DEW #128 - AI Detection Engineering Uncertainty, 3D Threat Hunting and Salesloft Drift Shenanigans
and the Bills win season opener #gobills
Sep 10
•
Zack Allen
13
1
3
DEW #127: SOC Visibility Triad, Feedback loops in detection, PowerShell detection ideation
In November 2006, Windows PowerShell was created. This made a lot of people very unhappy and has widely been regarded as a bad move
Sep 3
•
Zack Allen
7
Det. Eng. Weekly #126 - live laugh logs
every SOC should have this over their kitchen tables
Aug 27
•
Zack Allen
10
1
See all
Detection Engineering Weekly
The latest news and how-tos in detection engineering
Subscribe
Recommendations
View all 12
Cyberwox Unplugged
Day Johnson
The Scalable Thread
Sid
Let's Do DevOps
Kyler Middleton
Software Analyst Cyber Research
Francis Odum
Detection at Scale
Jack Naglieri
Detection Engineering Weekly
Subscribe
About
Archive
Recommendations
Sitemap
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts
