rcegan

Microsoft Sentinel Practice Lead @ MSSP. Defender XDR, Detection Engineering, SOAR. Blog-haver. Hack the planet.

Mirror - The Structure and Taxonomy of a Detection Knowledge Base — July 13, 2024
Sending Pretty Sentinel Alerts to Discord with Webhooks — March 2, 2024
The Joy of Using Excalidraw for Everything — February 17, 2024
You should be Exploiting your Procrastination — January 26, 2024
Building a beginner's detection lab with Defender, Sentinel, and Splunk — January 17, 2024
January 2024 - How I currently organise my Obsidian vault as a Cybersecurity enthusiast — January 10, 2024
An introduction to building an effective Detection Engineering Capability — January 4, 2024
How I take notes as a Cybersecurity Engineer - Update — November 28, 2023
Converting Sigma rules to KQL in your DevOps workflow with GitHub Actions — November 7, 2023
Don't blow up Prod with Process Events — October 17, 2023
Hunting with Network Signatures in Defender and Sentinel — February 23, 2023
How I take notes as a Cybersecurity Engineer — January 10, 2023
A few months with Defender EASM — December 31, 2022
Moving to Mataroa — November 19, 2022
Using Emojis to bypass hardcoded SIEM detections — October 27, 2022