Who’s watching your VirusTotal submissions?Phishing testing is often a part of a company’s security training, and conducting frequent phishing tests is part of our security program…May 26, 2021May 26, 2021
Purple Team Cat And MouseIn an old blog post, I spoke about the importance of a Red Team program for mature security organizations. Part of that is having…Oct 26, 2020Oct 26, 2020
Automating security alerting with ElastAlert and Cortex XSOARAs I’ve mentioned previously, here at Code42 our Security Operations team uses Elasticsearch as one of our tools for log aggregation…Jun 30, 2020Jun 30, 2020
Security: Be Agile, be effectiveIn a blog post I wrote not too long ago, I dove into the reasons why security teams need to learn how to code. In short, as the lines…Jun 12, 2020Jun 12, 2020
Securing your remote work environmentIt’s probably safe to say that if you are able to work remotely right now, you are doing just that. Aside from concerns like uncomfortable…Apr 6, 2020Apr 6, 2020
Keep Your Security Ops BearingsIn the past couple of weeks, our daily realities have been turned upside down. Routines have been drastically altered, people are…Mar 20, 2020Mar 20, 2020
Down with SIEM, long live SOAR!SIEM (Security Information and Event Management) tools have been the bedrock of Security Operation Centers, or SOCs, for much of the…Feb 20, 2020Feb 20, 2020
IoC Repository — Is it worth it?When it comes to Security Operations, and particularly on the defensive size, there is a lot of data to deal with. Security tool alerts…Jan 31, 2020Jan 31, 2020
Implementation Considerations for the Elastic Common SchemaHere at Code42, we use Elasticsearch as one of our solutions for log aggregation, searching, and alerting. Out of the box, Elasticsearch…Jan 28, 2020Jan 28, 2020