Golgothus (Zach He/Him)
@Golgothus
Senior Incident Response Engineer | Threat Hunting, IR, Cloud | ENFJ | https://t.co/78ZPXqXGxN Your friendly CSO! (Chief Soap Officer)
ID:868367376
https://docs.golgothus.tech/ 08-10-2012 17:33:57
18,4K Tweets
1,2K Followers
667 Following
I just came across a tool called AttackGen. It's a simple tool that generates incident scenarios based on a Threat Actor and suggests simulations and possible detections at a high level. #llm #python #threatintel
๐ code: github.com/mrwadams/attacโฆ
๐ app: attackgen.streamlit.app
YouTube demo of how to use the WDACConfig module to create Application control for business policies straight from the cloud, MSFT Defender for Endpoint Advanced Hunting. It has commentary ๐ฃ๏ธ and everything properly explained ๐ซฐ
#CyberSecurity #Windows
youtube.com/watch?v=oyz0jFโฆ
Learn how Microsoft Copilot for Security can empower cybersecurity professionals to transform how they approach threat intelligence in this Microsoft Threat Intelligence Podcast episode with Brandon Dixon, Vasu Jakkal, and podcast host Sherrod DeGrippo ๐ฆ: msft.it/6015Y6aUf
If you want to play with KQL and use some of your own data rather than sample data, set yourself up a free Azure Data Explorer (ADX) cluster. No credit card or Azure subscription required, 100 GB storage, it is great for testing and ad-hoc analysis - learn.microsoft.com/en-us/azure/daโฆ