[Upcoming Session] 2024 Mid-Year Attacks & Trends. Join us August 1st.
Register
Skip to main content
Episode
22

Cloud Security Detections: Practical Insights from Attack Emulations

#22 Cloud Security Detections: Practical Insights from Attack Emulations

May 23, 2024

Get the Giveaway

Detection engineering faces significant challenges in validating the efficacy of detection logic, particularly in accurately identifying attacker tactics, techniques, and procedures (TTPs). How do you know if your detection logic accurately detects attacker TTPs?

Traditional methods utilizing static event logs provide a foundational testing framework but often leaves a lot of uncertainty. This session will highlight some cloud security insights derived from actual cloud attack emulations.

Kennedy Torkura, Cloud Security Detection Engineer & Co-Founder and CTO of Mitigant, will share pivotal detection-building experiences with cloud security use cases. By demonstrating tested detection strategies through real-world attack scenarios, this discussion aims to equip DEs with enhanced methodologies for ensuring the reliability and accuracy of their detection systems.

Join us live on Detection Engineering Dispatch to gain first-hand knowledge on advancing your detection capabilities.

Episode Host Headshot
Kennedy Torkura
Co-Founder & CTO, Mitigant
Episode Host Headshot
Alex Hurtado
Detection Dispatch Host, Anvilogic

Additional Resources

Launch the Snowflake Lab
Anvilogic for Snowflake
How Detection Content Combat Threats in the SOC

Past Episodes & Resources

Oliver Rochford on AI Chatbots in Security

July 18, 2024

#25 Oliver Rochford on AI Chatbots in Security

Join us for an insightful session with Oliver Rochford, author of the Curious AI newsletter, as we explore the transformative potential of AI chatbots in security operations centers (SOCs).

Watch Now and Get the Giveaway
Andrew Vanvleet on Advanced Detection Engineering Approach and Threat Hunting

June 20, 2024

#24 Andrew Vanvleet on Advanced Detection Engineering Approach and Threat Hunting

Learn about the overlapping relationship between detection engineering and threat hunting, and how these two activities feed off each other.

Watch Now and Get the Giveaway
Cybersecurity Incident Report Writing Workshop

June 6, 2024

#23 Cybersecurity Incident Report Writing Workshop

In this episode, you'll learn how to write a good incident report. This episode is intended for analysts and senior analysts that exclusively work with evidence.

Watch Now and Get the Giveaway
Data Lakes Uncharted: Navigating Security Frontiers with Ryan Fitch

May 9, 2024

#21 Data Lakes Uncharted: Navigating Security Frontiers with Ryan Fitch

Join us as we uncover the strategic and technical dimensions of evolving SOC operations unlocking insights that are as transformative as they are practical for today's cybersecurity leaders.

Watch Now and Get the Giveaway
The Lifecycle of a Detection

April 11, 2024

#20 The Lifecycle of a Detection

Join us for this session packed with detection engineering insights. Arm yourself with knowledge, for with great knowledge comes great responsibility.

Watch Now and Get the Giveaway
Cloud Security: Navigating Effective Detection for Cloud Environments

March 28, 2024

#19 Cloud Security: Navigating Effective Detection for Cloud Environments

Join us for an eye-opening episode of Detection Dispatch, where we delve into the critical realm of cloud security detection.

Watch Now and Get the Giveaway
5 Security Data Lake 'Aha Moments' for Detection Engineers

March 14, 2024

#18 Five Security Data Lake 'Aha Moments' for Detection Engineers

Omer Singer, VP of Strategy and Tim Frazier, Sales Engineering Director sit down to discuss how security data lakes can unlock new use cases, and more effective and efficient processes for detection engineering teams.

Watch Now and Get the Giveaway
Unlocking LLM Use Cases for Security Operations

February 29, 2024

#17 Unlocking LLM Use Cases for Security Operations

Mike Hart & Scott Rodgers, Principal Data Scientists at Anvilogic, sit down to discuss how SOC teams can leverage LLMs and work effectively with their data scientists to let the machines do more work, for you.

Watch Now and Get the Giveaway
Breaking Down the Detection Engineering Lifecycle: Deep Dive into Threat Research

February 15, 2024

#16 Breaking Down the Detection Engineering Lifecycle: Deep Dive into Threat Research

Join Kevin Lo, Senior Threat Researcher at Anvilogic, for a deep dive session on all things threat research and how it plays into the entire detection engineering lifecycle.

Watch Now and Get the Giveaway
Build the Right Detections: An Intro to Threat Modeling

February 1, 2024

#15 Build the Right Detections: An Intro to Threat Modeling

Join Omer Singer, VP of Strategy and Tim Frazier, Sr. Sales Engineer for a deep dive into the world of threat modeling.

Watch Now and Get the Giveaway
A Day in the Life of a Detection Engineer

January 18, 2024

#14 A Day in the Life of a Detection Engineer

Join us for the first episode of 2024 with Raymie Michael, Security Engineer @ eBay.

Watch Now and Get the Giveaway
Hands-on Technical Workshop: File Identification, Encoding, and Encryption for Beginners

December 7, 2023

#13 Hands-on Technical Workshop: File Identification, Encoding, and Encryption for Beginners

Learn the basics of identifying files, encoding, and encryption based on file characteristics & contents.

Watch Now and Get the Giveaway
From Practitioner to Security Leader: All Things Detection Engineering

November 9, 2023

#12 From Practitioner to Security Leader: All Things Detection Engineering

Learn what detection engineering skills are most crucial in todays environment

Watch Now and Get the Giveaway
Threat Hunting 101: Lateral Movements in Windows Networks

October 26, 2023

#11 Threat Hunting 101: Lateral Movements in Windows Networks

Learn how you can improve your investigation skills for lateral movements in Windows Event Logs.

Watch Now and Get the Giveaway
Part 3 | Time for Your Check-up: Leverage AI to Monitor the Health of Your Security Environment

October 12, 2023

#10 Part 3 | Time for Your Check-up: Leverage AI to Monitor the Health of Your Security Environment

In this episode, you'll learn how to maintain a healthy security environment to prevent the unexpected.

Watch Now and Get the Giveaway
Part 2 | Get Rid of Lousy Detections: Leverage AI to Tune Your Detections & Stop Alert Fatigue

September 28, 2023

#9 Part 2 | Get Rid of Lousy Detections: Leverage AI to Tune Your Detections & Stop Alert Fatigue

In this episode, learn how you can leverage AI to automate the tuning & maintenance of your alerts.

Watch Now and Get the Giveaway
Scaling Detection Engineering: Leveraging AI for Workloads on Snowflake

September 14, 2023

#8 Scaling Detection Engineering: Leveraging AI for Workloads on Snowflake

Come learn how Anvilogic leverages ML to help you get the most of not just your Snowflake investment, but any data platform you use.

Watch Now and Get the Giveaway
Detection Engineering Fundamentals: Best Practices for Building Robust Detections

August 31, 2023

#7 Detection Engineering Fundamentals: Best Practices for Building Robust Detections

Join us for our 7th episode where we'll continue diving deeper into the fundamentals of detection engineering.

Watch Now and Get the Giveaway
Interactive Webshell Investigation: Tracing the Intruder's Tracks in Your Web Apps

August 17, 2023

#6 Interactive Webshell Investigation: Tracing the Intruder's Tracks in Your Web Apps

This session will help you deduce when a webshell may be in the process of being installed/utilized, and how to get ahead of it. If you love getting hands-on, and into the details- this session is for you!

Watch Now and Get the Giveaway
Rakuten Mobile Defends Against MFA Attack Techniques by Leveraging Anvilogic and Splunk

August 3, 2023

#5 Rakuten Mobile Defends Against MFA Attack Techniques by Leveraging Anvilogic and Splunk

Watch the session to hear from Sota, and see how Anvilogic can empower your Splunk investment to defend against these type of attacks.

Watch Now and Get the Giveaway
Analyzing Powershell Scripts: A Deep-Dive for Threat Hunters

July 20, 2023

#4 Analyzing Powershell Scripts: A Deep-Dive for Threat Hunters

This session will help you fine-tune your hunting skills when you encounter a threat, understand popular types of payloads, and triage efficiently. Stay tuned for the giveaway where you can apply your learnings hands-on!

Watch Now and Get the Giveaway
Capture the Flag (CTF): Snowflake Edition

July 6, 2023

#3 – Capture the Flag (CTF): Snowflake Edition

It's time to up-level or test your detection engineering skills by achieving top-level objectives and answering quiz-style questions to emerge victorious in this epic CTF challenge.

Watch Now and Get the Giveaway
Mastering Threat Detection: Building Behavioral-Based Detections

June 22, 2023

#2 – Mastering Threat Detection: Building Behavioral-Based Detections

We'll walk through examples, and be giving away detections that can help you apply your learning hands-on right after the session. Come join us, and stay ahead with the detection engineering community!

Watch Now and Get the Giveaway
Detection Engineering 101 to Empower Splunk Users

June 8, 2023

#1 – Detection 101 to Empower Splunk Users

Join Anvilogic for bi-weekly sessions where we’ll surface detection engineering best practices, trending threats, detection content or a hands-on workshop.

Watch Now and Get the Giveaway