Detection Engineering Dispatch is a live series of 30 to 45-minute episodes featuring hands-on experiences, open discussions and live case studies with security operations teams at leading companies on what it takes to build a great detection engineering program.
Join your peers to knowledge share, deep-dive on technical best practices, and engage in discussions relevant to the detection engineering community.
Days Until The Next Live -Session
Top 10 KQL Queries Every DE Should Know
In this episode, Alex sits down with Sergio Albea, an accomplished Threat Hunter, Researcher, User Behavior Analyst, and Senior Cloud Security Engineer/Architect, to share a must-have resource for detection engineers: the Top 10 KQL Queries of 2024.
From detecting DLL hijacking and MFA fatigue to uncovering anonymous file access in OneDrive and SharePoint, we’ll walk through each query, the data feeds/sources required for detection and talk shop about their practical uses. Whether you’re new to KQL or an experienced user, these queries are designed to elevate your detection capabilities.
Don’t miss this essential resource for 2025—register now!