Detection Engineering Weekly
Subscribe
Sign in
Home
Notes
Field Manual
Archive
Leaderboard
About
What are Atomic Detection Rules?
The first and last rules you'll likely write :)
Dec 15, 2025
•
Zack Allen
21
1
1
DEW #140 - SVG Filter ClickJacking, Detection Engineering "Onboarding" and React2Shell spotlight
my detection unc status is probably at an all time high and i'm here for it
Dec 10, 2025
•
Zack Allen
10
1
DEW #139 - Detection Surface, Frontier Models are good at SecOps & THREE YEAR ANNIVERSARY!
I graduated from the terrible twos to a threenager
Dec 3, 2025
•
Zack Allen
9
1
Most Popular
View all
What is a Detection Engineer?
Jun 20, 2025
•
Zack Allen
35
3
2
What is Detection Rule Efficacy?
Jul 18, 2025
•
Zack Allen
29
1
3
The Security Research Product Function
Mar 26, 2025
•
Zack Allen
17
1
2
DEW #137 - AI Agents For Security By Security, Free Sigma training & JA4 for beginners
Nov 12, 2025
•
Zack Allen
17
1
3
Det. Eng. Weekly #113 - Can I get a rule, and can you make it last forever?
May 14, 2025
•
Zack Allen
15
2
3
DEW #128 - AI Detection Engineering Uncertainty, 3D Threat Hunting and Salesloft Drift Shenanigans
Sep 10, 2025
•
Zack Allen
13
1
3
Latest
Top
Discussions
DEW #138 - Sigma's Detection Quality Pipeline, Anthropic finds AI-first APT & eBPF shenanigans
vibing APTs, we really out here frfr
Nov 19, 2025
•
Zack Allen
7
1
DEW #137 - AI Agents For Security By Security, Free Sigma training & JA4 for beginners
The Louvre's WiFi password should've been ervouL
Nov 12, 2025
•
Zack Allen
17
1
3
DEW #136 - ATT&CK V18 deep dive, Cyberslop @ MIT & Aisuru repurposes to residential proxies
Action Bronson voice: "I hunt cyberslop on my arch box, Vicuña pajamas draped, terrace views in Amalfi"
Nov 5, 2025
•
Zack Allen
8
DEW #135 - Chaos Detection Engineering, Connecting Policy to IR playbooks & Spooky AWS Policies
spooky scary detection rules keepin' me up at night
Oct 29, 2025
•
Zack Allen
7
3
DEW #134 - Prioritizing Critical Assets, AI SOC means MORE alerts and Microsoft CoPilot Phishing
Have you tried just being 100% accurate all the time you goober?
Oct 22, 2025
•
Zack Allen
9
3
DEW #133 - Redefining Security Visibility, TTP-First Hunting & F5 breach
we should define a standard to unite all standards
Oct 16, 2025
•
Zack Allen
5
2
DEW #132 - Linux Rootkits Evolution, LLM Rule Evals, Oracle 0-day exploitation
༼ つ ಥ_ಥ ༽つ noo all my rootkits are obsolete ლ(ಠ益ಠლ)
Oct 8, 2025
•
Zack Allen
7
3
DEW #131 - ❄️New EDR bypass❄️, CTI Poverty, AWS Infra Canaries & Hunting in IMDS
🫂GET IN🫂CLICK🫂HUNTING🫂NEWS🫂THREAT ACTOR HARMONY🫂DRAMA🫂RULES🫂IOC JUICERS
Oct 1, 2025
•
Zack Allen
12
DEW #130 - God-mode Azure vulnerability, Composite Detections & Detection Observability
power overwhelming
Sep 24, 2025
•
Zack Allen
20
1
See all
Detection Engineering Weekly
The latest news and how-tos in detection engineering
Subscribe
Recommendations
View all 12
Bug-eyed and Shameless
Justin Ling
The Scalable Thread
Sid
THOR Collective Dispatch
Sydney Marrone
TheSequence
Jesus Rodriguez
Cyberwox Unplugged
Day Johnson
Detection Engineering Weekly
Subscribe
About
Archive
Recommendations
Sitemap
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts
