Detect FYI

ID: 3e9addeb-6d59-5d0a-8893-5aa91c8a0809

STIX ID: identity--3e9addeb-6d59-5d0a-8893-5aa91c8a0809

Feed Type: rss

Earliest post: 2025-06-02

Latest post: 2026-05-29

The Detect.fyi Blog provides practical, community-driven insights, tutorials, and tools on detection engineering, threat hunting, and actionable security techniques to help defenders improve threat visibility and response.

Exclude posts that do not describe a security incident

Classification

Min Pub Date

01/01/2020

Max Pub Date

05/31/2026

Title	Date Published ↓	Describes Incident	Author	Visible
The AI-Embedded SOC: An Operating Model for the Asymmetry Era	2026-05-29	True	Omar Tarek Zayed	True
Hunt Before They Hide -From Device Codes to Fake IT Support Detecting Active Microsoft 365 Identity…	2026-05-26	True	Rohitashokgowd	True
Detection Logic Bugs, Developing Context to Bypass MiniPlasma Rules	2026-05-23	True	Nikolas Bielski	True
The Hidden Security Risk in Microsoft Teams: Detecting AI Note-Taking Bots with KQL	2026-05-14	True	Bi Yue Xu	True
Unmanaged PowerShell Execution: Hunting Beyond powershell.exe	2026-05-08	True	Nesrine Cherrabi	True
Hunting ClickFix Win + X Variants	2026-05-08	True	Manuel Arrieta	True
Analyzing GLOBAL GROUP (BlackLock) Artifacts	2026-04-24	True	SIMKRA	True
Threats based on Clipboards actions (+ KQL Query)	2026-03-30	True	Sergio Albea	True
A Detection Researcher Mindset — DCSYNC T1003.006	2026-03-27	True	Scott Plastine	True
Ghost in LSASS: Detecting KslKatz Credential Dumping Framework	2026-03-27	True	Omar Tarek Zayed	True
Detecting RegPwn by Behavior, Not Binary	2026-03-23	True	Omar Tarek Zayed	True
The Invisible Kill Chain: Detecting Non-Human Identity Attacks Across Telemetry Boundaries	2026-03-01	True	Koifsec	True
Shai Hulud 2.0 Campaign	2026-01-12	True	SIMKRA	True
Detection of Kerberos Golden Ticket Attacks via Velociraptor	2026-01-11	True	dfirloading	True
Hunting Fileless Malware in the Windows Registry	2025-06-24	True	Manuel Arrieta	True