Alex Teixeira – Medium

Alex Teixeira

Alex Teixeira
in
Detect FYI

From Intelligence to Detection: A Workflow for Integrating CTI, IR, Hunting & Red Teams

In 2017, a former software tester suggested that I should consider shipping detection content by following the SDLC, and it seemed like a…

Nov 3

From Intelligence to Detection: A Workflow for Integrating CTI, IR, Hunting & Red Teams

Nov 3

Alex Teixeira
in
Detect FYI

Is Security Analytics the key to High-Fidelity, Context-Rich Alerts?

Turning massive security alerts stream into a few manageable, stats-annotated, scored, aggregated Alert Sessions.

Oct 3

Is Security Analytics the key to High-Fidelity, Context-Rich Alerts?

Oct 3

Alex Teixeira
in
Detect FYI

Sysmon: a viable alternative to EDR?

I've been recently engaged in workshops with distinct clients from completely different industries/verticals and this is a recurring topic.

Jul 4

Sysmon: a viable alternative to EDR?

Jul 4

Alex Teixeira
in
CodeX

Data Science & Exploratory Data Analysis: the Panda versus the Pony!

Exploratory data analysis sits at the core of any insightful data work. Performing log analysis in search for threats is no different.

Jun 5

Data Science & Exploratory Data Analysis: the Panda versus the Pony!

Jun 5

Alex Teixeira
in
Detect FYI

How to prioritize a Detection Backlog?

I started writing Medium stories in 2017 and the very first article was "How to rank Quick Wins", a fascinating topic that deserved another…

May 13

How to prioritize a Detection Backlog?

May 13

Alex Teixeira
in
Detect FYI

What makes up a solid SIEM query?

After writing and peer-reviewing numerous SIEM searches, here I share some tips to help others enhance their query-foo.

Apr 23

What makes up a solid SIEM query?

Apr 23

Alex Teixeira
in
Detect FYI

AI-Powered SOC: it's the end of the Alert Fatigue as we know it?

If you’ve ever worked in an enterprise SOC, you’ve probably heard it before:

Apr 2

AI-Powered SOC: it's the end of the Alert Fatigue as we know it?

Apr 2

Alex Teixeira
in
Detect FYI

Boost your Security Monitoring reports with Sankey Diagrams

The Pie Chart is perhaps the most prevalent data visualization type seen in security reports out there. It's easy to implement and…

Mar 18

Boost your Security Monitoring reports with Sankey Diagrams

Mar 18

Alex Teixeira
in
Detect FYI

Unsupervised Machine Learning with Splunk: the cluster command

If you are in cyber for long, you should have probably heard this one:

Feb 19

Unsupervised Machine Learning with Splunk: the cluster command

Feb 19

Alex Teixeira

Splunk ES Correlation Searches (Rules) Best & Cool Practices

The following document is by far the top accessed resource from my solo business website. Since its first release in late 2020 I’ve…

Jan 15

Splunk ES Correlation Searches (Rules) Best & Cool Practices

Jan 15

Alex Teixeira

Alex Teixeira

Friend of Medium

I design and build detection and SIEM/EDR/XDR content for Enterprise #SecOps teams #DetectionEngineering http://opstune.com

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams