SIEM

GhostLock: The No-Encryption “Ransomware” That Can Paralyze Windows File Servers in Minutes ghost

ghost

GhostLock: The No-Encryption “Ransomware” That Can Paralyze Windows File Servers in Minutes

ddos May 13, 2026

A security researcher has demonstrated an unconventional method to paralyze Windows file servers without resorting to data...

The Autonomous Blue Team: Build a Self-Healing SIEM with the AI Detection Engineering Lab AI-powered detection engineering

AI-powered detection engineering

The Autonomous Blue Team: Build a Self-Healing SIEM with the AI Detection Engineering Lab

ddos May 8, 2026

AI Detection Engineering Lab A template for building an AI-powered detection engineering pipeline using Claude Code as an autonomous...

Earning Their Keep: Audit Your Microsoft Sentinel Log Value with “Log Horizon” Log Horizon Sentinel tool

Log Horizon Sentinel tool

Earning Their Keep: Audit Your Microsoft Sentinel Log Value with “Log Horizon”

ddos April 30, 2026

Log Horizon connects to your Microsoft Sentinel workspace (and optionally Defender XDR), goes through every log table you’re...

Edge of Extinction: How FortiGate Flaws Open the Gates to Active Directory Subjugation CVE-2025-58034 Fortinet vulnerability CVE-2023-48788 Fortinet

CVE-2025-58034 Fortinet vulnerability CVE-2023-48788 Fortinet

Edge of Extinction: How FortiGate Flaws Open the Gates to Active Directory Subjugation

ddos March 12, 2026

The compromise of a perimeter network appliance can swiftly shepherd a malefactor toward domain controllers and the...

Microsoft Integrates Sysmon Natively into Windows 11 & Server 2025

Windows Sysmon Integration Windows Security Upgrade Windows Agentic OS Backlash Shared Audio memory diagnostic Windows 11 24H2 Windows 11 bug Windows 10 EOL, ESU Program Windows 11 25H2 Titanis C# Library Windows 10 ESU Windows 10 End of Life Windows 11 update BitLocker Vulnerability Windows 11 bug Windows 11, Insider Preview Windows 11 false notification Windows 11 Win-DDoS Windows 11 Bloatware Free Security Updates Windows 11 24H2, Windows 11 25H2

Microsoft Integrates Sysmon Natively into Windows 11 & Server 2025

ddos November 21, 2025

Microsoft is introducing native Sysmon support in Windows, marking a significant shift in the security landscape. Capabilities...