© 2026 Hashnode
Prologue I had an interesting 45 minute conversation with a security engineer from a mostly-cloud company. We talked about how would one start a detection assessment program, mainly brainstorming ideas on what to test. It was an impromptu chat (kind ...

In my role as a Security Operations Center (SOC) analyst, I recently encountered a high-severity alert involving "unfamiliar sign-in properties" for a user account. What initially appeared to be a potential threat turned out to be a false positive, c...

Working as a Student SOC Analyst at LSU Shreveport has given me the chance to experience firsthand how real-world threat detection works — and recently, I encountered my first true positive security incident that tested my analytical and investigativ...

Introduction Modern security operations rely on automated alerting to detect reconnaissance activities within enterprise networks. However, when certain alerts trigger frequently, distinguishing between benign system behavior and true security threat...

Shuffle is a highly regarded open source Security Orchestration, Automation, and Response (SOAR) tool known for its ease of deployment, robust features, and strong community support. This article will delve into the working of Shuffle, provide a step...

Here in this project the enhancement of cybersecurity with a SOAR-EDR project using LimaCharlie, Slack, and Tines will be demonstrated. Introduction to SOAR-EDR Integration Overview of SOAR-EDR and Its Importance Definition of SOAR and EDR: Security...
