A Chloe Burton special on the very human side of detection engineering. From a nonlinear path into security (neuroscience, psychology, Splunk era chaos) to leading a DE team today, Chloe and Alex break down why context beats checklists, why so many detections cluster in the middle of the MITRE ATT&CK framework, and how telemetry availability quietly shapes what we defend. We dig into detection fundamentals that don’t get talked about enough: avoiding the myth of the perfect rule, resistin...
All content for Detection Engineering Dispatch is the property of Anvilogic and is served directly from their servers
with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.
A Chloe Burton special on the very human side of detection engineering. From a nonlinear path into security (neuroscience, psychology, Splunk era chaos) to leading a DE team today, Chloe and Alex break down why context beats checklists, why so many detections cluster in the middle of the MITRE ATT&CK framework, and how telemetry availability quietly shapes what we defend. We dig into detection fundamentals that don’t get talked about enough: avoiding the myth of the perfect rule, resistin...
What Your EDR Doesn’t See...Kostas Drops Receipts from the Telemetry Trenches
Detection Engineering Dispatch
57 minutes
2 months ago
What Your EDR Doesn’t See...Kostas Drops Receipts from the Telemetry Trenches
We unpack what modern EDRs actually deliver, where they fall short, and where to validate telemetry before you buy. EDR Telemetry Project co-founder, Kostas walks through the open-source EDR Project, the pros/cons of Sysmon, and how to evolve from alert consumers to detection engineers. And also....EDR Vendors dropping out of the MITRE ATT&CK Evaluations?? Show Note References: https://github.com/tsale/EDR-Telemetry?tab=readme-ov-file#edr-scoreshttps://www.edr-telemetry.com/ Detect...
Detection Engineering Dispatch
A Chloe Burton special on the very human side of detection engineering. From a nonlinear path into security (neuroscience, psychology, Splunk era chaos) to leading a DE team today, Chloe and Alex break down why context beats checklists, why so many detections cluster in the middle of the MITRE ATT&CK framework, and how telemetry availability quietly shapes what we defend. We dig into detection fundamentals that don’t get talked about enough: avoiding the myth of the perfect rule, resistin...
