How to use SEKOIA.IO indicators in Microsoft Sentinel ?
Since May 20221,2, SEKOIA.IO indicators can be integrated into Microsoft Sentinel. In this blogpost, we will cover how to take advantage of this integration and extend it using a...Read More
Lucky Mouse: Incident Response to Detection Engineering
This blogpost discusses how the Tactics, Techniques and Procedures (TTPs) used by the APT27 (Lucky Mouse) intrusion set in the last incident reported by Intrinsec, a SEKOIA.IO Managed Security...Read More
XDR detection engineering at scale: crafting detection rules for SecOps efficiency
In this blogpost we present SEKOIA.IO’s process to create detection rules, which first requires explaining our detection workflow as well as understanding SEKOIA.IO XDR history and specificities.Read More
Improving Threat Detection with Sigma Correlations
Today, we are adding Sigma Correlations support to the SEKOIA.IO threat detection capabilities! In this post, we discuss what can be done with it, and why it was needed....Read More
Detail of an alert, observable database, new exclusive source … the novelties of...
SEKOIA.IO aims to be as close as possible to the users of the platform, meeting their needs in a precise way, while taking into account their approach and user...Read More
Playbooks, YARA rules, IoCs… explanation about the news
SEKOIA.IO XDR and SEKOIA.IO CTI are constantly evolving to meet the needs of our users, while taking into account their approach and user experience. Each month, we review and...Read More
Playbooks, règles YARA, IoCs… explication des nouveautés
SEKOIA.IO XDR et SEKOIA.IO CTI évoluent sans cesse pour répondre toujours plus aux besoins de nos utilisateurs, tout en prenant en compte leur approche et expérience utilisateur. Chaque mois,...Read More
Playbooks, YARA rules, IoCs… explanation about the news
SEKOIA.IO XDR and SEKOIA.IO CTI are constantly evolving to meet the needs of our users, while taking into account their approach and user experience. Each month, we review and...Read More
XDR Is Not EDR++
In the small circles of Detection & Response specialists, a debate is raging around what the heck really is XDR. We at SEKOIA.IO would like to weigh in this...Read More
Enrich Your Graylog with SEKOIA.IO
The Cyber Threat Intelligence (CTI) of SEKOIA.IO includes indicators that are crafted for the special needs of detecting and qualifying both generic and advanced cyber threats. This article shows...Read More