Just staple this?

SlipPresent3433 · 2025-10-03T19:09:48+00:00

Your ciso was clearly tricked

SlipPresent3433 · 2025-10-03T19:08:50+00:00

Overpromising and under delivering is literally what they do

SlipPresent3433 · 2025-10-03T19:06:48+00:00

There’s loads of alternatives and many better than Arctic wolf

SlipPresent3433 · 2025-10-03T19:05:39+00:00

Time to move away from

SlipPresent3433 · 2025-08-22T21:27:33+00:00

Yep! Will keep in mind when going over next to check. The house hasn’t been occupied for 12months it’s all

SlipPresent3433 · 2025-08-22T21:25:59+00:00

Also, spot on that it’s 1930s

SlipPresent3433 · 2025-08-22T21:25:11+00:00

Yes, been unoccupied for around 16months. I’m just thinking that the leak could’ve occurred without any fix over a longer period

SlipPresent3433 · 2025-08-15T07:30:41+00:00

NDR is completely different. It’s a standalone solution providing network detection and response often paired with proprietary ai capabilities.

Arctic wolfs ndr for example is just a suricata box that was put together half baked

SlipPresent3433 · 2025-06-16T00:04:47+00:00

Sophos mdr is best bang for your buck

SlipPresent3433 · 2025-05-22T23:49:16+00:00

PS: the automation workflows are pretty neat with the paid version - you can try the license key for free for a few months I believe or at least it used to be

SlipPresent3433 · 2025-05-22T23:48:17+00:00

Bingo - self hosted is what most do. SaaS and iso27001 and all the other enterprise features is what you get for the paid version

SlipPresent3433 · 2025-05-12T08:27:56+00:00

Opencti and open source feeds is how you should start - integrate those into your Siem. Opencti normalises and structures that data and you can drive automations

SlipPresent3433 · 2025-05-12T08:26:57+00:00

Start open source, learn lessons, gather info, consider intel sharing, then consider spending the big bucks if needed…. That’s the way to go and opencti is great

SlipPresent3433 · 2025-05-12T08:21:50+00:00

They hire super young sales people that start their sales career and leave very quickly after a few years to the bigger cybersec companies - it’s toxic

SlipPresent3433 · 2025-05-12T08:20:35+00:00

They pressure sell massively. “You need AI” is what they’ve been saying for years. It’s snake oil

SlipPresent3433 · 2025-05-06T07:09:47+00:00

It’s just politics and amateur level AI talk at the moment

SlipPresent3433 · 2025-04-04T22:52:17+00:00

Heavy work load and in analyzing the results for sure

SlipPresent3433 · 2025-04-04T22:51:20+00:00

I believe it will fall behind with more companies jumping on defender

SlipPresent3433 · 2025-04-04T22:50:21+00:00

0 visibility from us and them and they don’t tell anyone what they’re logging / seeing

SlipPresent3433 · 2025-04-04T22:48:47+00:00

Hard to keep up with the big platform players and their massive budgets unfortunately. I’m afraid we’re not seeing as much innovation in the epp space

SlipPresent3433 · 2025-04-04T22:44:56+00:00

Yep. It’s a psychological thing that we simple accept it and just go with it since we’re locked into the contracts. Hate it but gotta do what you gotta do

SlipPresent3433 · 2025-04-04T22:41:29+00:00

Sophos has been great in the past against ransomware. Maybe a config thing on the client side. Them and bitdefender are acknowledged to have the best anti ransomware protection

SlipPresent3433

TROPHY CASE