In Part 2, we turned on the lights. We are now collecting millions of logs. But how do we find the one malicious needle in that massive haystack? Today, we teach the machine to hunt. Welcome back to The Watchtower Chronicles. In our p, we enabled the “Eyes of the Beast.” We turned on Windows … Continue reading The Watchtower Chronicles: Part 3 – Signal in the Noise (Writing Your First Detection Rule)