Alex Teixeira – Medium

Home

Following

Library

Reading history

Stories

Stats

Alex Teixeira

Published in
Detect FYI

Becoming a Detection Engineering Contractor, Part II— The Preparation

You want to become a contractor or an independent consultant in the Detection Engineering (DE) space? This series is for you.

2d ago

Becoming a Detection Engineering Contractor, Part II— The Preparation

2d ago

Published in
Detect FYI

Threat Hunting step-by-step: Collecting Web Shells 🐚 using Ephemeral Baselines

Turning a KQL hunting query into a Defender detection rule to spot unusual web server processes using simple statistics.

Feb 25

Threat Hunting step-by-step: Collecting Web Shells 🐚 using Ephemeral Baselines

Feb 25

Published in
Detect FYI

Baselines 101: Building Resilient, Frictionless SIEM Detections

How to leverage Enterprises' Circadian Window to spot unusual activity and potentially uncover cyber threats.

Feb 12

Baselines 101: Building Resilient, Frictionless SIEM Detections

Feb 12

Published in
Detect FYI

Becoming a Detection Engineering Contractor, Part I — The Motivation

So you wanna become a contractor (freelancer, independent consultant) in the Detection Engineering space? Here I share my impressions.

Jan 17

Becoming a Detection Engineering Contractor, Part I — The Motivation

Jan 17

Published in
Detect FYI

From Intelligence to Detection: A Workflow for Integrating CTI, IR, Hunting & Red Teams

In 2017, a former software tester suggested that I should consider shipping detection content by following the SDLC, and it seemed like a…

Nov 3, 2024

From Intelligence to Detection: A Workflow for Integrating CTI, IR, Hunting & Red Teams

Nov 3, 2024

Published in
Detect FYI

Is Security Analytics the key to High-Fidelity, Context-Rich Alerts?

Turning massive security alerts stream into a few manageable, stats-annotated, scored, aggregated Alert Sessions.

Oct 3, 2024

Is Security Analytics the key to High-Fidelity, Context-Rich Alerts?

Oct 3, 2024

Published in
Detect FYI

Sysmon: a viable alternative to EDR?

I've been recently engaged in workshops with distinct clients from completely different industries/verticals and this is a recurring topic.

Jul 4, 2024

Sysmon: a viable alternative to EDR?

Jul 4, 2024

Published in
CodeX

Data Science & Exploratory Data Analysis: the Panda versus the Pony!

Exploratory data analysis sits at the core of any insightful data work. Performing log analysis in search for threats is no different.

Jun 5, 2024

Data Science & Exploratory Data Analysis: the Panda versus the Pony!

Jun 5, 2024

Published in
Detect FYI

How to prioritize a Detection Backlog?

I started writing Medium stories in 2017 and the very first article was "How to rank Quick Wins", a fascinating topic that deserved another…

May 13, 2024

How to prioritize a Detection Backlog?

May 13, 2024

Published in
Detect FYI

What makes up a solid SIEM query?

After writing and peer-reviewing numerous SIEM searches, here I share some tips to help others enhance their query-foo.

Apr 23, 2024

What makes up a solid SIEM query?

Apr 23, 2024

Alex Teixeira

Alex Teixeira

Friend of Medium

I design and build detection and SIEM/EDR/XDR content for Enterprise #SecOps teams #DetectionEngineering http://opstune.com

Help
Status
About
Careers
Press
Blog
Privacy
Rules
Terms
Text to speech