Welcome to SecOps Community
Discussion List
-
Google Cloud Security Talks 2023 virtual eventHi SecOps Community! I wanted to invite you all to our upcoming Google Cloud S… -
How to implement KQL Query form a playbook on html widgets?Hello All, is it possible to show the KQL Query which was used within the play… -
Issues with the playbooks not running in simulator mode?Is anyone else having issues with the playbooks not running in simulator mode? None of my playbooks… -
Dashboard for time between logging and detections firingDoes anyone have any advice on how you could create a dashboard to see the average amount of time b… -
Joining the SecOps SlackJoining the SecOps Slack… I sent requests to invite my team, and got a will be … -
Is it possible to use Arrays.contains with two variables in Yara-L?In the documentation it seems that the arrays.contains function can be used like the following, ar…
-
Issue with how playbook priority works across multiple environmentsHas anyone else had issue with how playbook priority works across multiple environments? For exampl… -
Default alert or case viewsHello All, how the default alert/case views for you guys look like? trying to b…
-
Chronicle SIEM reference listsThis post was originally sent by Tom Fridman The future's so bright - gotta… -
Serverless compute within chronicleI wanted to throw this out for anyone in the community - what has everyone been doing to look at se… -
install siemplifyCan I install siemplyfy on redhat kvm on premise -
Oops you did it again!This post was originally sent by Tom Fridman hi …
-
The Grandma testThis post was originally sent by Tom Fridman Tom the boy (this is how we ca…
-
SIEM RulesCurious, do people share rules here that they have developed? Based on seen activity or just rules …
-
IDE funtionality verses Playbook functionalityI wanted to do something simple, like decode a base 64 sting. I copied the function and added the c…
-
Our next Office Hour addresses Chronicle SOAR Approval Links.This post was originally sent by Tom Fridman As we continue to provide you …
-
Connectors session videoThis post was originally sent by Tom Fridman Is this highly informative ses…
-
Rules and how they worksDoes anyone know if Google have a list of Rules which are available in Chronicle Security and are b… -
January Newsletter!Hello Cloud Security Champions, Stay up-to-date on all the latest with SIEM and SOAR by reading o…
-
Community meetsAre there any plans for SecOps community meets - either online or irl? I..e. Us…
-
3PagerDuty IntegrationIntegration to receive PagerDuty alerts, list alerts, and resolve triggered alerts.
-
SecPops PlaylistThis post was originally sent by Tom Fridman Hi …
-
Mapping and Modeling session videoThis post was originally sent by Tom Fridman Hi …
-
Playbook MenuI wanted to share this to see if anyone is interested in this. Or if someone else has done somethin…
-
JSON FIlter DocumentationI think I have a syntax issue. Or I am doing this wrong? I want to filter out all message ID's that…
-
Functions that require single inputI have found a few functions that fail if they receive more than a single input. Mimecast Report M…
-
Connectors Office HourThis post was originally sent by Tom Fridman Connectors work as a main mech…
-
Define the industry outlook for the next 5-10 yearsA decade from now, a lot of what we see today as the cybersecurity market will get absorbed by the … -
Interested resources for Google SecOpsHi Google SecOps community! My name is Chris Bentley and I’m a SOC analyst at a healthcare company …
-
Open sourced our Chronicle detection rulesHey all, I open sourced our Chronicle detection rules (and a few helpers) on Gi…
