Paul Masek @paulmasek@infosec.exchange Profile picture
IT Recruitment Consultant. @BSidesFortWayne Co-founder. GSEC & GIAC Advisory Board. #detectionengineering & #threathunting fan.
May 13, 2022 9 tweets 9 min read
#DetectionEngineering #ThreatHunting Huge List O' Resources Incoming \/ \/ \/

SIEM Rulesets (all open and free):
@MITREcorp CAR - car.mitre.org
@splunk - github.com/splunk/securit…
@elastic - github.com/elastic/detect…
@sigma_hq - github.com/SigmaHQ/sigma/…

👇🧵 Some Free / Some Paid: SIEM Rule Marketplace @SOC_Prime: socprime.com

Great Threat Hunting Guide: threathunting.net/files/hunt-evi…

Detection engineering guide. Excellent places to look first @redcanary : redcanary.com/threat-detecti…