There is a lot of haters on Sigma... Nas even said, "many people tell him he isnt good at detection engineering" - meanwhile, every vendor and enterprise is using their rules.... Sigma is freakin awesome!!
Nvm, i found out while typing the message: The InsightIDR backend supports the following log entry/rule types: Process start events DNS query events Web proxy events Firewall events Ingress authentication events
a bunch of streamers/youtubers are going on about call of shames anti-cheat acting like it has malware, imo you should have a nosy at it, bet you can sort out all the drama in no time flat
There is a lot of haters on Sigma... Nas even said, "many people tell him he isnt good at detection engineering" - meanwhile, every vendor and enterprise is using their rules.... Sigma is freakin awesome!!
sigma sucks. it looks like they4re trying to tailer it to just work for very specific vendors. Fuckin lame.
This was fantastic upload. Can't wait to play with these detection rules. Thank you both!
This was great! Thanks, both of you!
This is what I was looking for when I looked up "Sigma" on UA-cam, but wasn't expecting to be bombarded with pages and pages of incel content
This was great and very informative for detection, Thanks a bunch to both.
patrick bateman cybersecurity
😂😂😂
I love that movie
this is literally a next level type of detection system
Is there any potential that Wazuh becomes a supported backend for Sigma?
John can Sigma support in converting AIX binary logs into Splunk format?
I guess the obvious question now, is what would a threat actor do to fly under the sigma radar?
Fuzzing or other obfuscation and also patience. Separate actions with time.
Banger thumbnail
Can you hunt the Lazarus syndicate?
Full time: Batman
Part time : cyber security😎
So sigma
John You da best 🔥🔥
I can't get sigma rules to work with insightidr, even the converter failes to process the rules.i'm doing something wrong or is it not yet supported?
Nvm, i found out while typing the message:
The InsightIDR backend supports the following log entry/rule types:
Process start events
DNS query events
Web proxy events
Firewall events
Ingress authentication events
John, I swear all I hear is Seth Rogan when you are talking. Man I'm dying over here. But long LIVE sigma. Haters gonna hate.
My name is Aurora which made me a little confused when I kept hearing/seeing it
🗿 phonk security
a bunch of streamers/youtubers are going on about call of shames anti-cheat acting like it has malware, imo you should have a nosy at it, bet you can sort out all the drama in no time flat
How the f do you convert these to like sql queries? Noone will ever get to the point.
Still waiting for vim plug-ins exploits 😎
Sigma rules! XD
John why the quality and presentation of the video changes if you are with other hackers? That s need to be same.
Talk on palastin 😢
What the sigma
Teach us how to write a simple computer code for python and windows
Hi
Nice
Thanks for content ❤❤❤
I can hack just for you man
Firs
Second 😂
first
No
I am first