Secure Scroll

Join us as we unravel the complexities of cybersecurity, breaking down core concepts and providing fresh perspectives on industry updates. Discover how AI is reshaping threat detection and response, explore powerful free tools, stay informed about groundbreaking technologies, and gain a clear roadmap for building a successful career in cybersecurity. We also provide candid insights into various security products to empower your choices.

about

I’m Eswar Chand Palaparthi, a cybersecurity Specialist With over 13 years of global IT and security experience—including nearly a decade optimizing Trellix/McAfee ecosystems—I bring a complete understanding of a modern organization’s security posture to the table. I specialize in troubleshooting the issues and Implementations, and architecting comprehensive defenses using a wide range of network security products, including SIEM, XDR, IPS/IDS, Vulnerability Management, and Email Security. This blog is my space to share practical, battle-tested knowledge on network defense, threat hunting, and the evolution of the modern SOC.

I’m Eshwar Chand , a season Cybersecurity Specialist With over 13 years of global IT and security experience—including nearly a decade optimizing Trellix/McAfee ecosystems—I bring a complete understanding of a modern organization’s security posture to the table. I specialize in Troubleshooting Issues and architecting comprehensive defenses using a wide range of network security products, including SIEM, XDR, IPS/IDS, Vulnerability Management, and Email Security. This blog is my space to share practical, battle-tested knowledge on network defense, threat hunting, and the evolution of the modern SOC.

Category: Uncategorized

The Periodic Table of Hacking (MITRE ATT&CK) -PART-1

15/04/2026

You see the acronym everywhere, from vendor sales pitches to compliance checklists. But do you actually know how to use it during a live incident? Let’s break down the world’s most important cybersecurity framework and see why it’s the definitive playbook of defender strategy. Welcome to a new series. After spending over a decade in…
The Evolution of the All-Seeing Eye: Part 5 – Building the Radar (Implementation & Pitfalls)

01/04/2026

You can buy the most expensive, AI-powered XDR in the world, but if you plug it in wrong, it’s just a very expensive paperweight. Let’s explore the golden rules for implementing a modern SIEM without failing. Welcome to the grand finale of The Evolution of the All-Seeing Eye. Over the last four articles, we have…
The Evolution of the All-Seeing Eye: Part 4 – The Hunter’s Toolkit (Navigating the Data Lake)

25/03/2026

Having a smart SIEM is great, but what happens when you need to manually hunt for a threat? Today, we roll up our sleeves. We examine how analysts use Query Languages. They do this to find the needle in the digital haystack. Interactive Question: If you lose your keys in your house, having a security…
The Evolution of the All-Seeing Eye: Part 3 – The Universal Playbook (MITRE ATT&CK)

24/03/2026

Your SIEM caught the hacker. The alarms are blaring. But what exactly is the attacker trying to do, and what is their next move? Let’s explore how modern SOCs use the MITRE ATT&CK framework to read the enemy’s playbook in real-time. Interactive Question: If a stranger breaks a window in your house, you know they…
The Evolution of the All-Seeing Eye: Part 2 – The Smart Radar (Threat Intel & UEBA)

23/03/2026

In the past, security tools were blind to anything they weren’t explicitly told to look for. Today, they learn, adapt, and predict. Let’s look under the hood to see how modern SIEMs use Threat Intelligence and Behavior Analytics to catch hackers hiding in plain sight. Interactive Question: If a stranger uses your house key to…
The Evolution of the All-Seeing Eye: Part 1 – From Legacy SIEM to XDR

20/03/2026

Cybersecurity tools used to just store data for auditors. Now, they actively hunt hackers across the globe and fight back. Let’s explore how the SIEM evolved from a dusty digital filing cabinet into an automated threat-hunting machine. Interactive Question for the Reader: Have you ever tried finding a single misspelled word in a 10,000-page book?…
The AI Whisperer: How to Analyze SOC Logs with Local AI (Without Leaking Company Secrets)

11/03/2026

ChatGPT is amazing at explaining code, but pasting your company’s security logs into a public AI is a massive security breach. Here is how SOC Analysts are using open-source, local AI to speed up investigations safely. If you have been following our Watchtower Chronicles series, you know what life is like for a SOC Analyst,…
The Watchtower Chronicles: Part 5 – Beyond the Screen (Automation & Improvement)

18/02/2026

You know the vocabulary, you have the data, and you know how to triage an alert. But what happens when the alerts never stop? In the final chapter of our series, we explore how to save your sanity using automation and continuous improvement. Welcome to the conclusion of The Watchtower Chronicles. Over the last four…
The Watchtower Chronicles: Part 4 – The Red Phone Rings (Triaging Your First Alert)

17/02/2026

You built the Watchtower. You collected the logs. You wrote the detection rule. Now, the screen is flashing red. A suspected attack is happening right now. In this guide, we learn how to survive the adrenaline and triage the threat. Welcome back to The Watchtower Chronicles. If you have followed this series from the beginning,…
The Watchtower Chronicles: Part 3 – Signal in the Noise (Writing Your First Detection Rule)

12/02/2026

In Part 2, we turned on the lights. We are now collecting millions of logs. But how do we find the one malicious needle in that massive haystack? Today, we teach the machine to hunt. Welcome back to The Watchtower Chronicles. In our p, we enabled the “Eyes of the Beast.” We turned on Windows…
The Watchtower Chronicles: Part 2 – The Eyes of the Beast (Mastering Visibility)

03/02/2026

In Part 1, we learned the language of the SOC. Now, we must give our Watchtower the ability to see. Without data, an analyst is blind. Today, we learn the art of Visibility. Welcome back to The Watchtower Chronicles. In our last article(https://secure-scroll.com/?p=160), we defined the vocabulary of the SOC. We talked about “Alerts,” “Incidents,”…
The Watchtower Chronicles: Part 1 – Decoding the SOC (The Essential Vocabulary)

22/01/2026

Before you can walk the walk, you must talk the talk. Welcome to Part 1 of our SOC Monitoring series, where we decode the jargon, acronyms, and slang used by professional defenders. Imagine walking into a hospital operating room. The doctors are shouting things like “BP is dropping!” or “Push 10cc of Epi!” If you…
The Sandworm in Your Software: Understanding the ‘Shai-Hulud’ NPM Attack

12/01/2026

Hackers used to attack your firewall. Now, they are poisoning your ingredients. Learn how the recent “Shai-Hulud” attack turned the NPM ecosystem into a trap for developers If you are a fan of the movie Dune, you know the Shai-Hulud: the giant, terrifying sandworms that travel unseen beneath the surface, waiting to swallow unsuspecting travelers…
From Modeling to Hunting: Using Your Blueprints to Catch Hackers

09/12/2025

In our previous articles, we learned how to design a secure system. But what happens when the attackers strike anyway? In this final guide of our series, we pivot from “Threat Modeling” (Defense) to “Threat Hunting” (Offense). Welcome to the final chapter of our Threat Modeling series. So far, we have been acting like Architects.…
Taming the Beast: How to Analyze and Fix Your Threat Model Results

02/12/2025

In Part 2, we drew the diagram and generated a report. Now, we are staring at a list of 40+ potential threats. In this guide, we learn how to filter the noise, prioritize the real risks, and turn a scary report into a to-do list. Welcome back to our Threat Modeling series! In our previous…
Demystifying Digital Defenses: A Beginner’s Guide to Microsoft’s Threat Modeling Tool – Part 2

24/11/2025

– Part 2 In Part 1, we installed the tool and laid the foundation. Now, it’s time to build. In this guide, we will draw our first architecture diagram and let the tool automatically hunt for design flaws. Welcome back! In our previous article, we walked through the installation of the Microsoft Threat Modeling Tool…
Demystifying Digital Defenses: A Beginner’s Guide to Microsoft’s Threat Modeling Tool -Part-1

06/11/2025

This guide introduces cybersecurity beginners to Microsoft’s free Threat Modeling Tool. Learn the fundamentals of threat modeling and why it’s crucial for building secure applications. Follow our step-by-step tutorial, complete with a real-world example, to start identifying and mitigating security risks in your own projects. In an increasingly interconnected world, safeguarding our digital assets is…
Don’t Wait for a Breach: A Beginner’s Guide to Threat Modeling

27/10/2025

Threat modeling is a proactive security process that helps you find vulnerabilities in your application before it’s built, rather than waiting for an attack to happen. This guide breaks down the simple, four-step approach to identifying, analyzing, and mitigating potential threats. By learning to “think like an attacker,” you can design and build more secure…
GRC Demystified: Turning Boardroom Policy into Actionable Security

17/09/2025

Ever hear the term ‘GRC’ and wonder how it connects to the daily alerts and tickets in your queue? This article breaks down Governance, Risk, and Compliance into simple, real-world concepts. We’ll move past the jargon and show you how the security tools you already use—from your SIEM to your email security gateway—are the engines…
From Hours to Minutes – Role of Generative AI

18/07/2025

Let’s see how the Gen AI has changed the current world to handle tasks effectively. This ranges from everyday tasks to CyberSecurity Operations. How are we using this technology? What is the role of this in different types of CyberSecurity products. Today, I realized how often we use AI tools in our daily work. For…
Cyber security Organisations Evolution- Beyond The Shield.

03/07/2025

In today’s blog post we are looking into evolution of cybersecurity organisations and list of top notch companies and their products The 1980s: Birth of Commercial Cybersecurity The 1980s witnessed the transition from academic research to commercial cybersecurity products, laying the foundation for today’s industry giants. Pioneer Companies of the 1980s: Symantec Corporation (1982) Sophos…
Decoding the layers of cybersecurity – The Invisible Guardians

02/07/2025

Today I am trying to explain all the layers of security in the Cyber security field in simple words. Exploring the types of security layers we are dealing with today is very interesting. These layers protect the world from outages and data breaches. If you’ve ever wondered what “cybersecurity” actually entails beyond just antivirus software,…
From Locked Doors to AI Defense – Three Important Stages of Cyber Security From Then To Now.

01/07/2025

In this blog, I tried my level best to explain three important stages of the evolution of Cyber Security up to now. These stages range from the Locked Doors to AI Defense — Cybersecurity’s Great Leap. To Start with Cyber Security is always changing from decades to enhance the protection of the Digital World. It’s…
The Digital Guardian’s Genesis: How Cybersecurity Entered Our World

30/06/2025

Welcome, future digital guardians, to our very first post on Secure scroll In an era where our lives are inextricably linked to the digital realm, our activities range from banking and communication to entertainment and healthcare. The concept of “cybersecurity” feels like a modern invention. It seems a direct response to the internet age. But…

recent posts

about

Category: Uncategorized