InfoSec Deep Dive

In this episode, Alice and Bob dive into the world of detection engineering, breaking down what it means and why it’s crucial in cybersecurity. Exploring the detection engineering process, the challenges of creating effective detections, and how automation and behavioral analytics are reshaping the field. Plus, we’ll discuss how detection engineering intersects with threat hunting and offer practical advice for anyone looking to get started in this area of InfoSec. Sources Referenced: Detection Engineering vs. Threat Hunting | Medium Detection Engineering Overview | Splunk Detection Engineering Case Study | GitGuardian How to Become a Detection Engineer | Let's Defend About Detection Engineering | Medium

In this episode, Bob and Alice dive into the world of threat hunting, uncovering what it means to take a proactive approach against cyber threats. They explore the day-to-day life of a threat hunter, the step-by-step methodologies used to track hidden adversaries, and the key metrics that measure success. From building hypotheses to emulating attacker techniques, this episode offers insights into the skills and mindset needed to master the hunt and stay ahead of evolving threats. Sources Referenced: Behind the Scenes: The Daily Grind of Threat Hunter | by Kostas | Medium Threat Hunting Metrics: The Good, The Bad and The Ugly | by Kostas | Medium Threat Hunting Series: Detection Engineering VS Threat Hunting | by Kostas | Detect FYI Threat Hunting Series: The Basics | by Kostas | Medium Threat Hunting Series: The Threat Hunting Process | by Kostas | InfoSec Write-ups Threat Hunting Series: Using Threat Emulation for Threat Hunting | by Kostas | InfoSec Write-ups Threat Hunting Series: What Makes a Good Threat Hunter | by Kostas | Medium What Is Cyber Threat Hunting? Complete Guide | Exabeam

Join Bob and Alice in this episode of InfoSec Deep Dive as they explore the exciting world of cybersecurity careers. From ethical hackers to forensic analysts, security engineers to GRC strategists, they break down diverse career paths and the skills you need to succeed. Discover how to gain hands-on experience, overcome challenges like imposter syndrome, and stay ahead in this ever-evolving field. Packed with insights, resources, and practical advice, this episode is your roadmap to thriving in InfoSec! Sources Referenced: Cybersecurity Career Paths: Which One Is Right for You? The DFIR Report Mentoring & Coaching Program How To Get A Job In Infosec 2024 in Review: Helping InfoSec Professionals Achieve Their Goals How to Get a Job in Cybersecurity Book: Cybersecurity Career Master Plan: Proven techniques and effective tips to help you advance in your cybersecurity career

Join Bob and Alice on the Sigma Podcast as they dive into the world of Sigma rules! Perfect for beginners and pros alike, they break down what Sigma is, why it’s essential and how it’s revolutionizing threat detection. 🔗Sigma Website: sigmahq.io 🔗Sigma Github:  https://github.com/SigmaHQ/sigma

Are you confident in your EDR's visibility? This episode explores the EDR Telemetry Project's findings, highlighting critical gaps in telemetry coverage, particularly on Linux systems. We’ll discuss the project’s expansion to Linux, the challenges of diverse Linux environments, and key areas where EDR solutions often fall short, such as kernel-level monitoring, user activity, and service/scheduled task tracking. Discover how the project is pushing vendors to improve and how you can contribute to this effort! 🔗 Website: edr-telemetry.com