Infosec and Data Enthusiast. Lecturer. Course Author. Coffee Nerd. He/Him.
Joined October 2014
- Tweets 1,177
- Following 1,327
- Followers 353
- Likes 2,865
80 Photos and videos
Pinned Tweet
18 May 2023
I'm super happy and grateful to present you a new course I created together with the legendary @chrissanders88: Splunk for Security Analysts. I still can't believe it, but it just launched and I hope people will enjoy it π€
18 May 2023
Iβm excited to launch our latest course, Splunk for Security Analysts. βοΈ
You can read more about the online, on-demand Splunk for Security Analysts course and register now at networkdefense.co/courses/spβ¦.
4
2
23
5,265
14 Oct 2025
Thanks to @QuinnyPig's newsletter I stumbled upon this gem: Instead of providing a Sigma rule to copy/paste or download, AWS (or its AI) decided to include step by step instructions on what values to put in what fields: aws.amazon.com/security/secuβ¦
ALT Meme saying "Y u no sigma rule"
47
5 Oct 2025
I miss Audiogalaxy.
5 Oct 2025
i miss napster
60
Want to explore the Internet through a retro-futuristic version of Shodan? We've just updated the Shodan 2000 website: 2000.shodan.io/
6
41
257
22,906
1 Aug 2025
I don't know many CISOs, but judging by the endless stream of "CISO guides" vendors keep cranking out, apparently the industry thinks they're all winging it.
32
29 Apr 2025
To the person who decided that certificates in /usr/local/share/ca-certificates have to have a .crt file extension:
Please be aware, that I'm not a huge fan of your decisions.
40
22 Apr 2025
Today's reason to raise an eyebrow: Your document includes the phrase "Data is the new oil"
45
1 Apr 2025
What's a good way to measure/communicate detection coverage? And no, not ATT&CK π
51
11 Mar 2025
Interesting thought by @jack_naglieri that AI may replace (or enhance?) detection rule conversion currently done e.g. with @sigma_hqπ€ @cyb3rops @nas_bench are you thinking about / looking into this? Curious to get your take on it.
2
3
1,050
18 Feb 2025
This looks pretty useful. Looking forward playing around with it: aws.amazon.com/blogs/securitβ¦
Thanks @clintgibler for keeping all of us informed! π«Ά
27
17 Feb 2025
Dragonball detection engineering: When your goal is to get over 9000.
34
Regular Obsession retweeted
16 Feb 2025
@chrissanders88 DFIR Course Investigative Theory is by far the best course I've ever recommended to teach this critical skill. chrissanders.org/training/inβ¦
15 Feb 2025
2
2
441
13 Feb 2025
What's your take on alert scoring?
High/medium/low vs. 0 - 100 vs. record/notification/page? Static per rule vs. influenced by subject or other attribute (e.g. if user == admin: score )
Communicated attribute: Severity vs. urgency vs. confidence...? One of them, a combo?
3
4
462
9 Feb 2025
Even new portals still come up with a UX like this around passwords:
* Password complexity requirements π
* You ban (only) these 2 words? π
* If you block certain special characters it seems you don't know much about encoding/escaping π
* Red check marks for passed items π
44
6 Dec 2024
Recruiters doing memes on LinkedIn hurts so much, it should be a felony.
45
Regular Obsession retweeted
29 Nov 2024
AND courses on sale tomorrow π
1
5
23
2,191
26 Nov 2024
Me when my phone asks me for the name of the person in the selfies
34