this.

Open Sourced detection.studio here → github.com/northsh/detect… MIT License

Has your company ever been affected by a compromised business email? Read 0xSe7eN latest blog post, "How to Hunt & Defend Against Business Email Compromise" here 👇 blog.nviso.eu/2025/03/21/how…

...and this. Read “Pester-ing LOLBAS“ by Need on Medium: medium.com/@xNEED/pester-…

The DEATHCon 2025 Call for Workshops is now open! If you have a great idea for teaching people how to do #detectionengineering or #threathunting or an adjacent skill through hands-on experience in our lab, we'd love to hear it! deathcon.io/cfp.html Submit before June 1

rulehound.com/rules really nice detection rule aggregator I found

🚨 BLOG ALERT 🚨 I dove into maintenance in #DetectionEngineering - why it matters so much and the paradox that won’t let me sleep at night. This is the first post in a new series:

Claude 4 just refactored my entire codebase in one call. 25 tool invocations. 3,000+ new lines. 12 brand new files. It modularized everything. Broke up monoliths. Cleaned up spaghetti. None of it worked. But boy was it beautiful.

No Netflix, just cybersecurity

Great list of resources for anyone getting started in #detectionengineering (h/t to Richard Akroyd for creating this list) github.com/rfackroyd/dete…

Detection-as-Code: From Concept to Practice 👇 Check out St0pp3r latest blog series, where he unpacks the fundamentals of #DetectionEngineering and takes a closer look at the game-changing concept of #DetectionAsCode. blog.nviso.eu/2025/07/08/det…

Check out my latest blog for NVISO Labs on #detectionengineering and Detection-as-Code.

Tool release form my SteelCon talk. Nothing ground breaking but free tools are free tools github.com/two06/LinkedIn…

Check out part 2 of our #DetectionEngineering - Practicing #DetectionAsCode series is out! This part is all about laying the groundwork for a scalable and efficient detection repository.

📢 New blog post 📢 𝐁𝐫𝐞𝐚𝐤𝐢𝐧𝐠 𝐝𝐨𝐰𝐧 𝐭𝐡𝐞 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐃𝐞𝐟𝐞𝐧𝐝𝐞𝐫 𝐄𝐱𝐭𝐞𝐫𝐧𝐚𝐥 𝐀𝐭𝐭𝐚𝐜𝐤 𝐒𝐮𝐫𝐟𝐚𝐜𝐞 𝐌𝐚𝐧𝐚𝐠𝐞𝐦𝐞𝐧𝐭 𝐨𝐩𝐩𝐨𝐫𝐭𝐮𝐧𝐢𝐭𝐢𝐞𝐬 𝐟𝐨𝐫 𝐪𝐮𝐞𝐫𝐢𝐞𝐬 𝐢𝐧 𝐀𝐝𝐯𝐚𝐧𝐜𝐞𝐝 𝐇𝐮𝐧𝐭𝐢𝐧𝐠 & 𝐋𝐨𝐠 𝐀𝐧𝐚𝐥𝐲𝐭𝐢𝐜𝐬

Ever wondered what a "middleman" can do for your security? In the world of software development, one of the biggest hidden dangers is #HardcodedCredentials. Read our latest blog post on #CyberArk’s Central Credential Provider (CCP) here 👇 blog.nviso.eu/2025/08/01/sto…

Check out part 3 of our blog post series #DetectionEngineering - Practicing Detection-as-Code.