Αⅼех
@sifex
Followers
347
Following
6K
Media
86
Statuses
2K
Security / Detection Engineer working at @wise Building https://t.co/stmzR52Imy at @northdotsh
London
Joined May 2009
RT @haroonmeer: Re: the Coinbase hack:. "Hackers had paid multiple contractors and employees working in support roles outside the U.S. to c….
0
20
0
Heya @smallsteplabs, quick primer. Don't take your existing leads, google them, and then show me someone who shares my name's Dairy Farm article and call it lead generation. I honestly spoke highly of your company and was going to suggest it – but now it's become very unlikely.
0
0
1
RT @nas_bench: 🆕A Data-Driven Approach to Windows Advanced Audit Policy – What to Enable and Why. Excited to share my latest @splunk blog!….
0
24
0
🎉I am finally happy announce a brand new tool – .Sigma to SIEM conversion – done entirely locally (in-browser). Better support for Pipelines & Filters. Persistent workspaces, and Share & Export to Zip. Check it out down here👇.
6
72
267
RT @PantelisStoufis: 🚨 Internship Opportunity! 🚨. Apple is looking for an Intern to join our Information security organisation in the UK. T….
0
31
0
If you’re using Sigma, we built the filters feature to tackle this exact problem. Especially for SIEMs that have poor lookup support, Filters are essentially lookup tables pre-conversion.
A Detection Engineering mantra when it comes to alert tuning - favour using watchlists - NO hardcoding exclusions in the rule. If you work in multiple environments or a multi-customer SOC, an interactive watchlist or lookup that can be tweaked without modifying the rule is key.
0
1
9
Strong disagree, Cyber Security’s core foundation is based on humans — and the things they need to do. If you automated the entire thing, you’ve just shown that your organisation prides itself on stagnating, ignoring the users, and where security sits atop it’s raison d’être.
Today I am writing a guide on the following topic: how to talk to idiots who believe that fully-automated, humanless, autonomous #SOC is coming any day?.
2
1
4
I ended up writing a blog post on how I ended up doing In-memory DB testing on Tenancy for Laravel, right before it looks like v4 might support it 😅. Big shoutout to @samuelstancl for the package.
1
0
1
RT @zerointerupt: Apple is starting a new security team based in Canberra. Details for the first roles they are hiring for are here. https:….
0
28
0
RT @PantelisStoufis: I am currently seeking an exceptional Security Incident Response Engineer to join our esteemed global security inciden….
0
61
0
RT @herrmann1001: Definitely the one of the best sauna I experienced. the one at Kebnekaise mountain station, Where the view was amazi….
0
2
0