Validate Your Security Detection RulesSecurity engineering isn’t finished when the rule deploys. It’s finished when you can fire a real-world technique at the endpoint, watch…3d ago3d ago
CoPilot Now Speaks MITRE: A Smarter Way to Understand ThreatsIn the never-ending game of cat and mouse between attackers and defenders, knowledge is the edge. That’s why we’re excited to announce a…Jun 7Jun 7
Breaking Free of Wazuh’s Active Response Limitations with Graylog and CopilotWazuh’s Active Response is a game-changer for automating defensive actions. However, it’s not without limitations — particularly when…Jun 1Jun 1
Centralized Sysmon Configuration Management with Copilot and WazuhIn modern Windows endpoint monitoring, Sysmon (System Monitor) stands as a vital tool for gathering telemetry. However, managing its…May 31May 31
🛡️ Smarter Detections: Creating SIGMA Exclusion Rules in CoPilot for Velociraptor AlertsIn our last post, we set up SIGMA rule analysis using Velociraptor and successfully piped those alerts into CoPilot, giving us a powerful…Apr 30Apr 30
Seamless Sigma Integration with Velociraptor for Your Open-Source SIEMIntroductionApr 13A response icon1Apr 13A response icon1
Mastering Linux Monitoring with Tetragon and WazuhIn this post, we’ll explore how to use Tetragon, a powerful eBPF-based monitoring tool, to gain deep visibility into your Linux endpoints…Feb 4A response icon1Feb 4A response icon1
Exciting News: SOCFortress Joins the Wazuh Ambassador Program!We’re thrilled to share some exciting news from SOCFortress! SOCFortress has been officially recognized as a Wazuh Ambassador, a program…Jan 22Jan 22
SOCFortress: Reflecting on 2024 Achievements and Our Roadmap for 20252024: A Year of Growth, Innovation, and Milestones 🚀Dec 17, 2024Dec 17, 2024
