Discussion

Edward Pena

Security Engineer by day, Security Researcher by night

Sep 10, 2025

Tuning Sentinel Analytic Rules: New Executable via Office FileUploaded Operation

So this is going to be the beginning of a series where I document my journey into Detection Engineering. My main SIEM I’m using at this time is Microsoft Sentinel. This is a SIEM I’ve been dying to use at my old job and pitched the benefits of standi...

eddie-pena.com7 min read

#sentinel-analytic-rules #microsoft-sentinel

Responses

No responses yet.

Search Hashnode

Tuning Sentinel Analytic Rules: New Executable via Office FileUploaded Operation

Responses

Recent discussions