Aug 21 2019 10:07 AM - edited Aug 21 2019 10:44 AM
Edoardo Gerosa and Olaf Hartong have presented at DefCon the "Sentinel ATT&CK", which aims to simplify rapid deployment of a threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel. Cool staff and tons of out of the box detections
Aug 22 2019 03:02 AM