Recon InfoSec | Automation

Scaling Enterprise Forensic Timelining

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

In July, Eric & Whitney gave a talk titled "Breaches Be Crazy" at the SANS DFIR Summit outlining...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Brian Greunke

The Center for Threat-Informed Defense at MITRE recently released their Adversary Emulation Plans...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Whitney Champion

We've been big fans of the Thinkst platform for a while now. We may have mentioned them a time or...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Brian Greunke

As part of the #OpenSOC event Recon InfoSec recently conducted, we wanted to visualize where all of...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Brian Greunke

Staying on-top of the latest adversarial methodologies means quickly adjusting to new TTPs and...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Whitney Champion

If you couldn't tell by now, we love Graylog. We may have mentioned them a time or two :)

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Whitney Champion

Part of our job at Recon relies on fine tuning our threat signatures that make up the bulk of our...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Whitney Champion

When I joined the OpenSOC team at the beginning of this year, everything resided on 3 Intel Skull...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

Often times during incident response activities, the responder is overwhelmed with data. The need...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

Running a Security Operations Center requires fighting a constant battle to increase analyst...