Blog, Latest Threats — 3 min read
High Severity Bug in Linux Enables Privilege Escalation to Root
Alla Yurchenko
Blog, Latest Threats — 4 min read
LockBit Ransomware Detection
Alla Yurchenko
Blog, SIEM & EDR — 3 min read
Threat Detection Marketplace Support for SentinelOne Queries
Alla Yurchenko
Blog, Latest Threats — 3 min read
Novel Epsilon Red Ransomware Targets Unpatched Microsoft Exchange Servers
Alla Yurchenko
Blog, SIEM & EDR — 5 min read
Creating Google Chronicle Rules in Your Environment
Leandro Ariel Millahuel
    Blog, Latest Threats — 3 min read
    NOBELIUM APT Targets Governments Worldwide in a Massive Spear-Phishing Campaign
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    Detect Wormable RCE Vulnerability (CVE-2021-31166) in Windows HTTP.sys
    Alla Yurchenko
    Blog, Interview — 5 min read
    Interview with Threat Bounty Developer: Michel de Crevoisier
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    Rapid7 Has Fallen Victim to Codecov Supply Chain Attack
    Alla Yurchenko
    Blog, Latest Threats — 4 min read
    Detecting FragAttacks: Overview of Newly Discovered WiFi Flaws
    Alla Yurchenko
    Blog, Latest Threats — 4 min read
    Detect DarkSide Ransomware with SOC Prime
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    SystemBC Malware Increasingly Used as Ransomware Backdoor
    Alla Yurchenko
    Blog, SIEM & EDR — 6 min read
    Creating Microsoft Azure Sentinel Rules in Your SIEM Instance
    Sergiy Prystaiko
    Blog, Latest Threats — 4 min read
    Operation TunnelSnake: Moriya Rootkit Detection
    Alla Yurchenko
    Blog, Interview — 5 min read
    Interview with Threat Bounty Developer: Michel de Crevoisier
    Alla Yurchenko
    Blog, Interview — 4 min read
    Interview with Threat Bounty Developer: Shelly Raban
    Alla Yurchenko
    Blog, Interview — 4 min read
    Interview with Developer: Kyaw Pyiyt Htet
    Alla Yurchenko
    Blog, Interview — 5 min read
    Interview with Developer: Sittikorn Sangrattanapitak
    Alla Yurchenko
    Blog, Interview — 4 min read
    Interview with Developer: Roman Ranskyi
    Alla Yurchenko
    Blog, Interview — 5 min read
    Interview with Developer: Sreeman Shanker
    Alla Yurchenko
    Blog, Interview — 6 min read
    Interview with Developer: Emir Erdogan
    Alla Yurchenko
    Blog, Interview — 4 min read
    Interview with Developer: Den Iuzvyk
    Alla Yurchenko
    Blog, Interview — 5 min read
    Threat Bounty Program: To Infinity… and Beyond!
    Alla Yurchenko
    Blog, Threat Detection Marketplace — 4 min read
    Detection for Sysmon with Threat Detection Marketplace
    Alla Yurchenko
    Blog, Threat Detection Marketplace — 4 min read
    Why SOC Prime Created Continuous Content Management
    Veronika Telychko
    Blog, Threat Detection Marketplace — 7 min read
    Ransomware Detection with Existing Technologies
    Veronika Telychko
    Blog, Threat Detection Marketplace — 4 min read
    Sumo Logic Integration with Threat Detection Marketplace
    Veronika Telychko
    Blog, Threat Detection Marketplace — 5 min read
    Threat Detection Marketplace Updates: August 2020
    Veronika Telychko
    Blog, Threat Detection Marketplace — 7 min read
    Company Dashboard: Insights Into Your Threat Detection Marketplace Activity
    Veronika Telychko
    Blog, Threat Detection Marketplace — 2 min read
    SOC Prime Threat Detection Marketplace updates: May 2020
    Veronika Telychko
    Blog, Threat Detection Marketplace — 3 min read
    Custom Fields Mapping
    Alla Yurchenko
    Blog, Threat Detection Marketplace — 3 min read
    SOC Prime & Humio Integration Tech Info
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    High Severity Bug in Linux Enables Privilege Escalation to Root
    Alla Yurchenko
    Blog, Latest Threats — 4 min read
    LockBit Ransomware Detection
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    Novel Epsilon Red Ransomware Targets Unpatched Microsoft Exchange Servers
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    NOBELIUM APT Targets Governments Worldwide in a Massive Spear-Phishing Campaign
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    Detect Wormable RCE Vulnerability (CVE-2021-31166) in Windows HTTP.sys
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    Rapid7 Has Fallen Victim to Codecov Supply Chain Attack
    Alla Yurchenko
    Blog, Latest Threats — 4 min read
    Detecting FragAttacks: Overview of Newly Discovered WiFi Flaws
    Alla Yurchenko
    Blog, Latest Threats — 4 min read
    Detect DarkSide Ransomware with SOC Prime
    Alla Yurchenko
    Blog, Latest Threats — 3 min read
    SystemBC Malware Increasingly Used as Ransomware Backdoor
    Alla Yurchenko
    Blog, SIEM & EDR — 3 min read
    Threat Detection Marketplace Support for SentinelOne Queries
    Alla Yurchenko
    Blog, SIEM & EDR — 5 min read
    Creating Google Chronicle Rules in Your Environment
    Leandro Ariel Millahuel
    Blog, SIEM & EDR — 6 min read
    Creating Microsoft Azure Sentinel Rules in Your SIEM Instance
    Sergiy Prystaiko
    Blog, SIEM & EDR — 5 min read
    Cloud Security Challenges for Enterprise
    Alla Yurchenko
    Blog, SIEM & EDR — 4 min read
    SIGMA vs Indicators of Compromise
    Adam Swan
    Blog, SIEM & EDR — 10 min read
    Elastic for Security Analysts. Part 1: Searching Strings.
    Adam Swan
    Blog, SIEM & EDR — 13 min read
    SIEM Fundamentals (Part 1): First and Foremost, A Data Collection Problem
    Jordan Camba
    Blog, SIEM & EDR — 7 min read
    Short-Cutting the Threat Hunting Process
    Adam Swan
    Blog, SIEM & EDR — 7 min read
    Threat Hunting Basics: Getting Manual
    Adam Swan

    Discover More from SOC Prime

    Best Experience for Security Practitioners
    SOC Use Cases SOC Use Cases
    Dashboards, Rules, Parsers, Incident Response Playbooks, and more
    Continuous Content Management Continuous Content Management
    Stream the latest detections directly into your security tool
    Uncoder.IO Uncoder.IO
    Online Sigma translation tool for SIEM, EDR, and NTDR solutions
    Cyber Library Cyber Library
    Your free pass to cybersecurity knowledge

    This site uses cookies and other tracking technologies to assist with navigation and your ability to provide feedback, analyse your use of our products and services, assist with our promotional and marketing efforts, and provide content from third parties. Cookie Policy. Details

    Refuse Cookies Accept Cookies

    You previously chose to disable cookies. This site uses cookies and other tracking technologies to assist with navigation and your ability to provide feedback, analyse your use of our products and services, assist with our promotional and marketing efforts, and provide content from third parties. Cookie Policy. Details

    Details Accept Cookies