We are excited to announce the release of LogCraft CLI 0.1 into General Availability. Security practitioners can now easily build Detection-as-Code pipelines in their favorite version control systems such as GitLab and automatically deploy their detections in their favorite SIEM, EDR, XDR, or anything with an API.
Splunk is a powerful tool for data analysis but it can be difficult to track changes to your searches. This is where version control becomes indispensable. Version control allows you to track every change that you, or anyone, make to a search, so you can easily revert to a previous version when necessary. Additionally, it streamlines collaboration as everyone can see the changes that have been made, ensuring visibility into all modifications.
Qu'est que le référentiel d'exigences PDIS de ANSSI et pourquoi tous les SOC devraient s'en inspirer, au moins pour partie.
Why your detection rules should be versioned and how to properly implement best software engineering practices for effective Detection Engineering management.
When embarking on a Security Information and Event Management (SIEM) project, one of the most common dilemmas is determining which data sources to collect. Maximize the effectiveness of your SIEM implementation with these simple key considerations.
Welcome to LogCraft's blog! In this short inaugural blog post, we will start exploring the core themes associated with LogCraft. Stay tuned, we have a lot more to share!
