the dogesec blog

Learn how to seamlessly convert Sigma Rules into queries for your SIEM. Follow along with real examples.

Correlation Rules allow you to detect threats by linking multiple events together based on a meaningful relationship.

Sigma Rules are becoming more widely adopted as the standard detection language. Learning how to write them is not difficult. Let me show you.

Despite countless frameworks, best practices, blog posts... so many developers still hardcode credentials into their code.

We do a lot of our research into vulnerabilities. To aid this, we enrich CVEs using many remote sources of intelligence. Here is a walk-through showing how we connect CVEs to EPSS scores, CISA KEVs, MITRE ATT&CK, CWEs, and CAPECs.

Developing on last weeks post, I show you how to construct STIX Patterns to automatically flag which products are affected by published CVEs.

I wanted to write detection rules to identify what products are vulnerable to a CVE. In this post I walk you through my research.

Software, Data Sources, Data Components, Campaigns, and more, make MITRE ATT&CK even more powerful than you might first realise. In this post I uncover the parts of ATT&CK you might not be aware of.

Discover how MITRE ATLAS is helping to defend AI systems as I share a detailed explanation of how the knowledge-base is architected.

Our intel team is increasingly using the DISARM framework to classify parts of our research as disinformation campaigns continue increase. In this post I will introduce the DISARM data structure.