Recon InfoSec | SecOps (2)

An Encounter With TA551/Shathak

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Andrew Cook

The Recon incident response team recently responded to a case of business email compromise. The...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

Now that we've normalized and enriched our events, let's get into the actual threat detection logic...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

In my previous post, I explained the fundamental purpose and use cases of pipelines in Graylog –...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

If you are here hoping to learn more about using Graylog for the purpose of monitoring the security...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Bob Drobish

At Recon InfoSec we have the honor of working with some of the best security operations, incident...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Samuel Kimmons

Whether you're on the Defensive or Offensive side of security, it's important to understand how...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Kelley Wilds

The Recon team is excited to announce the launch of SOC X™, the Professional SOC Team World...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Kelley Wilds

The Recon team is thrilled to announce our newest offering, NDR Live Online!

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Whitney Champion

Our team are huge fans of Velociraptor. It's an incredibly powerful tool, for both DFIR and...

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Whitney Champion

We've been big fans of the Thinkst platform for a while now. We may have mentioned them a time or...