XDR detection engineering at scale: crafting detection rules for SecOps efficiency
Introduction In this blogpost we present SEKOIA.IO’s process to create detection rules, which first requires explaining our detection workflow as well as understanding SEKOIA.IO XDR history and specificities.Read More
Improving Threat Detection with Sigma Correlations
Today, we are adding Sigma Correlations support to the SEKOIA.IO threat detection capabilities! In this post, we discuss what can be done with it, and why it was needed....Read More
Detail of an alert, observable database, new exclusive source … the novelties of...
SEKOIA.IO aims to be as close as possible to the users of the platform, meeting their needs in a precise way, while taking into account their approach and user...Read More
Playbooks, YARA rules, IoCs… explanation about the news
SEKOIA.IO XDR and SEKOIA.IO CTI are constantly evolving to meet the needs of our users, while taking into account their approach and user experience. Each month, we review and...Read More
Playbooks, règles YARA, IoCs… explication des nouveautés
SEKOIA.IO XDR et SEKOIA.IO CTI évoluent sans cesse pour répondre toujours plus aux besoins de nos utilisateurs, tout en prenant en compte leur approche et expérience utilisateur. Chaque mois,...Read More
Playbooks, YARA rules, IoCs… explanation about the news
SEKOIA.IO XDR and SEKOIA.IO CTI are constantly evolving to meet the needs of our users, while taking into account their approach and user experience. Each month, we review and...Read More
XDR Is Not EDR++
In the small circles of Detection & Response specialists, a debate is raging around what the heck really is XDR. We at SEKOIA.IO would like to weigh in this...Read More
Enrich Your Graylog with SEKOIA.IO
The Cyber Threat Intelligence (CTI) of SEKOIA.IO includes indicators that are crafted for the special needs of detecting and qualifying both generic and advanced cyber threats. This article shows...Read More
Augmented SOC — How to rethink your security center?
Facing the constant changing tactics of attackers and the endless growing number of log data, the SOC need to evolve to better anticipate the threats. In 2000, early SIEM...Read More
Reduce cyber-risks through automation
According to the Accenture 2019 Cost of Cybercrime Study, released on March 6 2019, on an average the expense of malware attacks for companies was $2.6 million, an 11%...Read More