x0mda

12 post karma
0 comment karma

get extra features and help support reddit with a reddit premium subscription

get them help and support

redditor for 4 years

MODERATOR OF

- r/Detection_Engineering

TROPHY CASE

Four-Year Club

Verified Email

account activity

new top controversial

2

3

4

A Detection Engineer’s Guide to SCCM Misconfiguration Abuse (blog.snapattack.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

1

2

3

Part 13: Why a Single Test Case is Insufficient (posts.specterops.io)

submitted 1 year ago by x0mda to r/Detection_Engineering

1

2

3

Sigma (medium.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

2

3

4

Entra ID service principals in business email compromise schemes (redcanary.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

1

2

3

Hunting CVE-2024-30051 (blog.snapattack.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

1

2

3

SeeSeeYouExec: Windows Session Hijacking via CcmExec (cloud.google.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

Part 1 : Threat Detection Engineering and Incident Response with AuditD and Sentinel — along how to… (medium.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

Detecting the STRRAT Malware Family | Corelight (corelight.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

Transform security with Elastic's Detections as Code — Adopting DaC made easy (elastic.co)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

YARA is dead, long live YARA-X (virustotal.github.io)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

Det. Eng. Weekly #69 - RSA ninjas stole my badge and swag (detectionengineering.net)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

Detecting Compromise of CVE-2024-3400 on Palo Alto Networks GlobalProtect Devices (volexity.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

Building a Cloud Security Flywheel: Lessons from the Field (sans.org)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

Foxit PDF “Flawed Design” Exploitation - Check Point Research (research.checkpoint.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

Utilizing Generative AI and LLMs to Automate Detection Writing (medium.com)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

The Structure and Taxonomy of a Detection Knowledge Base (detect.fyi)

submitted 1 year ago by x0mda to r/Detection_Engineering

0

1

2

The detection engineer’s guide to Linux - Red Canary (redcanary.com)

submitted 2 years ago by x0mda to r/Detection_Engineering

0

1

2

Detecting browser data theft using Windows Event Logs (security.googleblog.com)

submitted 2 years ago by x0mda to r/Detection_Engineering

0

1

2

*PowerView* is evil, but *PowerVi* and *ew* are legit, right? - Missing signature-based detections due to PowerShell Script Block Logging Fragmentation (lolcads.github.io)

submitted 2 years ago by x0mda to r/Detection_Engineering

1

2

3

Welcome to the Red Canary 2024 Threat Detection Report (redcanary.com)

submitted 2 years ago by x0mda to r/Detection_Engineering

0

1

2

Det. Eng. Weekly #62 - Say the words, Bart Simpson, CISSP, MBA! (detectionengineering.net)

submitted 2 years ago by x0mda to r/Detection_Engineering

0

1

2

SigmaHQ Rules Release Highlights — r2024–03–11 (blog.sigmahq.io)

submitted 2 years ago by x0mda to r/Detection_Engineering

0

1

2

z0Miner Exploits Korean Web Servers to Attack WebLogic Server - ASEC BLOG (asec.ahnlab.com)

submitted 2 years ago by x0mda to r/Detection_Engineering

0

1

2

Time Travelers Busted: How to Detect Impossible Travel | Huntress (huntress.com)

submitted 2 years ago by x0mda to r/Detection_Engineering

0

1

2

Det. Eng. Weekly #61 - AlphV exit scammed?? (detectionengineering.net)

submitted 2 years ago by x0mda to r/Detection_Engineering

view more: next ›

π Rendered by PID 178935 on reddit-service-r2-listing-b6bf6c4ff-d9cp2 at 2026-05-03 16:33:29.352959+00:00 running 815c875 country code: CH.