@dylaninfosec : This is a great example of improving detection fidelity. When you get an ask to create a detection for X, ask yourself, as the one who will likely action it, does it make sense to alert on this? Improve on the base request so it’s not another FP you ignore every time it triggers. • TwiCopy

Dylan🛡AttacktheSOC

@dylaninfosec

+ Follow

Dad ⚭ Husband
𒉭 Azure Security | IAM | DE&TH
🏋️‍♂️CultoftheIron, Learning 🎸

What stands in the way, becomes the way

ID: 1638383922940657664

linkhttps://attackthesoc.com calendar_today22-03-2023 03:35:55

546 Tweet

596 Followers

649 Following

Dylan🛡AttacktheSOC

@dylaninfosec

a month ago

This is a great example of improving detection fidelity. When you get an ask to create a detection for X, ask yourself, as the one who will likely action it, does it make sense to alert on this? Improve on the base request so it’s not another FP you ignore every time it triggers.

thumb_up_off_alt5

chat_bubble_outline0

repeat0

shareShare