Regan – Medium

Pinned

Regan

How I take notes as a Cybersecurity Engineer

As you’ll probably be able to relate, I love reading. In particular, I love reading about cybersecurity. Ever since I was a kid, I was…

6 min readJan 10, 2023

--

How I take notes as a Cybersecurity Engineer

--

Regan

Recently I’ve been connecting up all my different home lab services to Discord as a central…

First, you’ll need to create a Discord server and create an integration. You can find out [how to do that…

2 min readMar 2, 2024

--

Recently I’ve been connecting up all my different home lab services to Discord as a central…

--

Regan

The Joy of Using Excalidraw for Everything

As a heavy Obsidian user, I’ve come to rely on for it many of my day to day tasks. As a security engineer, I’m regularly having to create…

2 min readFeb 17, 2024

--

A basic diagram created in Excalidraw demonstrating a basic Command and Control (C2) architecture.

--

Regan

Why you shouldn’t deploy the Azure Monitor Agent on Client Devices, and the Cost of Closing…

In one of my blogs a very long time ago, I wrote about some discrepancies I found in the Defender file creation events in Microsoft…

6 min readFeb 7, 2024

--

Why you shouldn’t deploy the Azure Monitor Agent on Client Devices, and the Cost of Closing…

--

Regan

You should be Exploiting your Procrastination

Procrastination is something that afflicts all of us without exception — a perceived kind of mental vulnerability that exists within…

4 min readJan 26, 2024

--

You should be Exploiting your Procrastination

--

Regan
in
Detect FYI

Building a beginner’s detection lab with Defender, Sentinel, and Splunk

If you work in an MSSP as an analyst or consult a lot, you’ll likely come in contact with SIEMs, EDRs, and data sources that are new…

5 min readJan 17, 2024

--

Building a beginner’s detection lab with Defender, Sentinel, and Splunk

--

Regan

January 2024 — How I currently organise my Obsidian vault as a Cybersecurity enthusiast

As I’ve talked about in previous blog posts, I use Obsidian as my main note-taking application. This is off the back of using tools like…

4 min readJan 10, 2024

--

January 2024 — How I currently organise my Obsidian vault as a Cybersecurity enthusiast

--

Regan
in
Detect FYI

An introduction to building an effective Detection Engineering Capability

Detection Engineering is a relatively new practice within blue teams and MSSPs, which has only recently garnered popularity amongst the…

5 min readJan 2, 2024

--

An introduction to building an effective Detection Engineering Capability

--

Regan

How I take notes as a Cybersecurity Engineer — Update

This blog post serves as a quick update to an article I wrote at the beginning of the year, as an impromptu ‘end of year wrap up’ on how…

3 min readNov 28, 2023

--

--

Regan

Converting Sigma rules to KQL in your DevOps workflow with GitHub Actions

Recently, Sigma started releasing massive batches of rules in dedicated releases. This is great, but often there’s an overwhelming number…

2 min readNov 7, 2023

--

Converting Sigma rules to KQL in your DevOps workflow with GitHub Actions

--

Regan

Regan

Security Engineer with a focus on Microsoft Sentinel, the Defender stack, and a bit of Splunk. Opinions are my own. Hack the planet.

Following

Help
Status
About
Careers
Blog
Privacy
Terms
Text to speech
Teams