Excited to share my new project: AttackRuleMap This project maps #AtomicRedTeam simulations to open-source detection rules like #SigmaRules and #Splunk ESCU rules (maybe more in the future). Currently for Windows, with plans to support more platforms.

RT @nas_bench: New Sigma release r2025–02–03 is available for download. 🌟5 New Rules 🛡️5 Rule updates 🔬14 Rule Fixes Explore the full rel…

The current version of the project has Sigma and Splunk rules. I wonder if it could support more platforms by adding a drop down button with the platform list and redirecting to Sounds possible :) #DetectionEngineering #BlueTeam

@onuroktay Acı bir tablo gerçekten abi. Allah hayatını kaybedenlere rahmet, yaralılara şifa, yakınlarına sabır versin.

@infosecb Thanks for sharing, it's awesome. Soft skills are the hidden treasures for a DE, especially product manager/owner skills. As a suggestion, scrum/kanban or agile might be added.

RT @infosecb: I recently stumbled upon - it's a great resource for self-learners that appreciate some structure. F…

now supports Linux attack and detection rules, in addition to Windows! With 88 new Linux attacks added, this open-source solution, aligned with Sigma and Splunk rules, takes multi-platform threat detection to the next level.

🚀 What’s new on 💻 New Column: Platform currently shows only Windows, but Linux support 🐧 is coming soon! 🔗 JSON Export to integrate anything. 🗓 Last Updated Date of the contents ☀️ Switch to Light Mode #blueteam #cyber

RT @mthcht: I made a windows #DFIR artifacts collection MindMap, it's tough to fit everything into a readable overview (might change later)…

@wy88215534 @infosecb Great summary!

RT @infosecb: Check out the latest addition to awesome-detection-engineering: AttackRuleMap AttackRuleMap is a clean and easy to use tab…

New domain is online. #mitre #DetectionEngineering #BlueTeam

@HunterX0day Can you check your connection? Maybe there was a problem if you tried from the company network. Proxy might block netlify subdomains.

What’s new on 🧪 Explore a collection of sample attack tests, different levels. 📂 Upload YAML files, whether it’s a single test or a whole MITRE technique file. ☀️ "Dark Mode? Not my style." Good news: Light Mode is now available! #AtomicRedTeam

RT @redcanary: Get tips for stronger identity security here:

@redcanary ✨

RT @redcanary:

@M_haggis %50 of the project..

I guess all DE teams are validating their new detections. What about prior detections? Building a pipeline may be good idea for be able to sleep well. #detectionengineering #detectionascode #siem