Home » Page 2

An insider insights into Conti operations – Part two

The first blog post was focusing on Conti’s evolution and the leak’s context and analysis. In this second blog post, we will look into how to make simple detection rules to detect the techniques shown in the Conti manuals. The techniques are simple for most of...

An insider insights into Conti operations – Part one

This is the first of two blog posts, where we focus on the Conti ransomware group whose training material was recently leaked on a cybercrime forum. To provide some context to this analysis, we describe Conti’s evolution and success since its origin. We then...
Ideation process at SEKOIA.IO

Ideation process at SEKOIA.IO

At SEKOIA.IO, we constantly work to ensure our customers are informed and protected from the latest threats. We focus on automation through new features optimizing our users daily work and enhancing their efficiency. Playbooks for automation, graph exploration for...
Playbooks, YARA rules, IoCs… explanation about the news

Playbooks, YARA rules, IoCs… explanation about the news

SEKOIA.IO XDR and SEKOIA.IO CTI are constantly evolving to meet the needs of our users, while taking into account their approach and user experience. Each month, we review and explain the new features to explain the new features and improvements of the existing. Happy...
The new features of SEKOIA.IO for the month of July

The new features of SEKOIA.IO for the month of July

SEKOIA.IO XDR, the eXtended Detection and Response SaaS platform aims to be as close as possible to the users of the platform, meeting their needs in a precise way, while taking into account their approach and user experience. In this dynamic, the platform continues...
Enrich Your Graylog with SEKOIA.IO

Enrich Your Graylog with SEKOIA.IO

The Cyber Threat Intelligence (CTI) of SEKOIA.IO includes indicators that are crafted for the special needs of detecting and qualifying both generic and advanced cyber threats. This article shows a simple solution to use the CTI of SEKOIA.IO to enrich a log management...
TAXII 2.1 is out: Pagination improvements

TAXII 2.1 is out: Pagination improvements

With TAXII 2.1 release it’s time to check what this new version is bringing. TAXII, or Trusted Automated Exchange of Intelligence Information, is an intelligence exchange protocol over HTTPS. To get more information about STIX and TAXII don’t hesitate to check our...