PinnedRceganinDetect FYIFrom Zero to Expert level Detection Engineering with Elastic’s Maturity ModelOne of the biggest hurdles for a burgeoning detection engineer is convincing your business that you need detection engineering.Oct 5Oct 5
PinnedRceganinDetect FYIThe Structure and Taxonomy of a Detection Knowledge BaseOne of the most critical aspects of a detection engineering program is the documentation. Without documentation, your SOC is flying blind…May 92May 92
PinnedRceganHow I take notes as a Cybersecurity EngineerAs you’ll probably be able to relate, I love reading. In particular, I love reading about cybersecurity. Ever since I was a kid, I was…Jan 10, 2023Jan 10, 2023
RceganRecently I’ve been connecting up all my different home lab services to Discord as a central…First, you’ll need to create a Discord server and create an integration. You can find out [how to do that…Mar 2Mar 2
RceganThe Joy of Using Excalidraw for EverythingAs a heavy Obsidian user, I’ve come to rely on for it many of my day to day tasks. As a security engineer, I’m regularly having to create…Feb 17Feb 17
RceganWhy you shouldn’t deploy the Azure Monitor Agent on Client Devices, and the Cost of Closing…In one of my blogs a very long time ago, I wrote about some discrepancies I found in the Defender file creation events in Microsoft…Feb 7Feb 7
RceganYou should be Exploiting your ProcrastinationProcrastination is something that afflicts all of us without exception — a perceived kind of mental vulnerability that exists within…Jan 26Jan 26
RceganinDetect FYIBuilding a beginner’s detection lab with Defender, Sentinel, and SplunkIf you work in an MSSP as an analyst or consult a lot, you’ll likely come in contact with SIEMs, EDRs, and data sources that are new…Jan 17Jan 17
RceganJanuary 2024 — How I currently organise my Obsidian vault as a Cybersecurity enthusiastAs I’ve talked about in previous blog posts, I use Obsidian as my main note-taking application. This is off the back of using tools like…Jan 10Jan 10
RceganinDetect FYIAn introduction to building an effective Detection Engineering CapabilityDetection Engineering is a relatively new practice within blue teams and MSSPs, which has only recently garnered popularity amongst the…Jan 2Jan 2