As Anton already mentioned here and here, our update of the big SIEM paper was turned into two new papers:How…
One of my favorite blog posts from Anton is the one about the “SOC nuclear triad”. As he describes, SOCs…
The Gartner Security Summit Brazil is fast approaching and I’m happy to be part of it again. This time it’s…
It’s crazy how many (free!) OSS projects are popping up for threat and attack simulation! We are working on research…
I don’t care if you use Hadoop or grep+Perl scripts. If you can demonstrate enough performance to do what you…
Is there a need, or place for a “virtual patch analyst”?If you look at our guidance on vulnerability management, you’ll…
While working on our research for testing security practices, and also about BAS tools, I’ve noticed that a common question…