https://www.catmouse.dev/ Security monitoring and cyber risk en https://www.catmouse.dev/minimisation-and-contamination.html https://www.catmouse.dev/minimisation-and-contamination.html Thu, 25 Jan 2024 10:02:21 +0200 Today is my birthday, and that's because from now on, I no longer identify with my biological age of ██ but with my social-emotional age of 19. https://www.catmouse.dev/offensive-cyber-operations.html https://www.catmouse.dev/offensive-cyber-operations.html Fri, 04 Nov 2022 08:43:36 +0200 Cyberwar is bullshit. That is what the author, Daniel Moore, almost could have said. Offensive Cyber Operations is his Ph.D. work escalated into a page-turner. https://www.catmouse.dev/detecting-carbanak-fin7-mitre-edr-evaluations-round-3.html https://www.catmouse.dev/detecting-carbanak-fin7-mitre-edr-evaluations-round-3.html Fri, 31 Dec 2021 10:36:41 +0200 What do the evaluation results and vendor marketing really tell you? A dive into Monday mornings, noise generators and end-to-end information loss. https://www.catmouse.dev/detecting-apt29-mitre-edr-evaluations-round-2.html https://www.catmouse.dev/detecting-apt29-mitre-edr-evaluations-round-2.html Tue, 28 Apr 2020 12:04:59 +0200 Which EDR vendor detects most APT29 steps? Based on MITRE's set of EDR evaluation results, I used Splunk to analyze their data. https://www.catmouse.dev/detecting-apt3-mitre-edr-evals-round-1.html https://www.catmouse.dev/detecting-apt3-mitre-edr-evals-round-1.html Thu, 15 Aug 2019 13:04:55 +0200 Which EDR vendor detects most APT3 steps? This is an analysis using Python and Splunk of the data MITRE published.