Detection Engineering Weekly

Detection Engineering Weekly

Home
Notes
Field Manual
Archive
Leaderboard
About
What is a Detection Engineer?
Why does Detection Engineering matter to a security org?
  Zack Allen
What is Detection Rule Efficacy?
Good rules vs Bad rules
  Zack Allen
What are Composite Detections?
Atomic Detection rules are critical building blocks for a detection engineering function.
  Zack Allen
What are Atomic Detection Rules?
The first and last rules you'll likely write :)
  Zack Allen
The Security Research Product Function
Product teams build, security research teams help navigate
  Zack Allen
DEW #137 - AI Agents For Security By Security, Free Sigma training & JA4 for beginners
The Louvre's WiFi password should've been ervouL
  Zack Allen
Det. Eng. Weekly #113 - Can I get a rule, and can you make it last forever?
I'm about to go on call, and I don't know if I'ma see you again
  Zack Allen
What are Detection Rules?
The fundamental concept behind all blue team operations
  Zack Allen
DEW #128 - AI Detection Engineering Uncertainty, 3D Threat Hunting and Salesloft Drift Shenanigans
and the Bills win season opener #gobills
  Zack Allen
DEW #144 - Pyramid of Permanence and 🦞OpenClaw 🦞 Security Dumpster Fires
Lobster never tasted so good
  Zack Allen
Det. Eng. Weekly #109 - I’m making a Hinge for detection engineers
Your profile is a rule, an alert is a match, and a false positive is a shitty date
  Zack Allen
DEW #127: SOC Visibility Triad, Feedback loops in detection, PowerShell detection ideation
In November 2006, Windows PowerShell was created. This made a lot of people very unhappy and has widely been regarded as a bad move
  Zack Allen
© 2026 Zack 'techy' Allen · PrivacyTermsCollection notice
Start your SubstackGet the app
Substack is the home for great culture