AI is transforming cybersecurity - from detecting phishing and insider threats to accelerating response. See how Waziuh, the open-source XDR and SIEM, integrates AI to turn raw security data into actionable insights and smarter threat hunting.
Built an integrated SOC training platform for blue teamers who want to practice without spending days on setup. The stack: - SIEM/XDR: Wazuh + OpenSearch - CTI: MISP with automated feed ingestion - DFIR: Velociraptor for endpoint collection - SOAR: Shuffle for automation workflows - NIDS: Suricata + EveBox for event management - PCAP: Arkime with sample captures - Fleet: osquery fleet management - Detection: 523 YARA rules + 3,047 Sigma rules pre-configured Technical approach: - Docker Compose...
Microsoft has been named a Leader in IDC's inaugural category for Worldwide Extended Detection and Response (XDR) Software for 2025, recognized for its deep integration, intelligent automation, and unified security operations solutions.
Hi folks! I'd love your take. I work at a company with about 150 users. We currently run GravityZone Business Security Enterprise and have for almost 3 years. Honestly, I don't have many complaints - aside from the occasional high RAM usage - but overall I'm happy with it. We're also in the M365 ecosystem (licensed, email hosted there), and we're planning to migrate to Active Directory in a few months. That got me wondering whether we should switch to Microsoft's security stack - Microsoft...
I'm currently a security engineer at a healthcare provider in my region. It's a company that everyone in the country knows, but absolutely nobody outside has heard of. My job is quite flexible and relatively technical. My day-to-day involves maintaining and configuring WAF, XDR, NDR, and some AppSec work. I received an offer from one of the largest banks in Europe for a senior AppSec position. I'll have to move to a HCOL region, but the salary compensates - net I'd receive more than currently,...
What is yours detection security stack? (XDR, SIEM, SOAR, MDR) Let's try to find the best one. submitted by /u/Mobile-Astronomer428 [link] [comments]
What tools would you use to build a security monitoring system , opensource or paid and which ones specifically , I am thinking roll your own XDR but its a lot of effort ? Would something like ELK Stack be a good starting point or do you suggest other tools ideally a system that can be highly customised and tuned over time. Curious what options are out there. submitted by /u/Red_One_101 [link] [comments]
submitted by /u/Obvious-Bedroom691 [link] [comments]
submitted by /u/digicat [link] [comments]
Which platform do you mostly deploy EDR/XDR in your firm ? Thanks. View Poll submitted by /u/Pristine-Remote-1086 [link] [comments]
Please list the free/open source EDR/XDR for Linux endpoints and servers that you have experience with. Please do not mention "Wazuh" or other SIEM tools. Thanks in advance. submitted by /u/Pristine-Remote-1086 [link] [comments]