Detection Engineering Dispatch is a live series of 30 to 45-minute episodes featuring hands-on experiences, open discussions and live case studies with security operations teams at leading companies on what it takes to build a great detection engineering program.

Join your peers to knowledge share, deep-dive on technical best practices, and engage in discussions relevant to the detection engineering community.

Days Until The Next Live -Session

00
Days
:
00
Hrs
:
00
Min
:
00
Sec

Top 10 KQL Queries Every DE Should Know

Thursday, December 12th @ 11AM PT | 2PM ET
Online

In this episode, Alex sits down with Sergio Albea, an accomplished Threat Hunter, Researcher, User Behavior Analyst, and Senior Cloud Security Engineer/Architect, to share a must-have resource for detection engineers: the Top 10 KQL Queries of 2024.

From detecting DLL hijacking and MFA fatigue to uncovering anonymous file access in OneDrive and SharePoint, we’ll walk through each query, the data feeds/sources required for detection and talk shop about their practical uses. Whether you’re new to KQL or an experienced user, these queries are designed to elevate your detection capabilities.

Don’t miss this essential resource for 2025—register now!

Episode Host Headshot
Alex Hurtado
Detection Dispatch Host, Anvilogic
Episode Host Headshot
Sergio Albea
Senior Cloud Security Engineer & Architect

Past Episodes & Resources