Richard Ackroyd (@richardackroyd.com)

GitHub - rfackroyd/detection-engineering-starter-pack: A starter pack of resources to help you get started in Detection Engineering. A starter pack of resources to help you get started in Detection Engineering. - rfackroyd/detection-engineering-starter-pack

Not long ago I did a presentation for the UKCSC, and this Detection Engineering “starter pack” pointed to the resources discussed, check it out 🦈

github.com/rfackroyd/de...

05.07.2025 07:49 👍 1 🔁 0 💬 0 📌 0

This is great

05.07.2025 07:10 👍 0 🔁 0 💬 0 📌 0

(Suggestions welcome just reach out)

18.11.2024 16:07 👍 0 🔁 0 💬 0 📌 0

Also put together a list here a few days back! For the feed aspect

bsky.app/profile/did:...

18.11.2024 16:03 👍 3 🔁 0 💬 1 📌 0

Try link your personal domain if you can, up to you though

14.11.2024 21:38 👍 1 🔁 0 💬 0 📌 0

How to set your domain as your handle - Bluesky Using a domain as your handle helps with account identity, verification, and portability. Here's how to set your domain as your handle.

For those of you returning after a while, this is how you can make your own domain your BlueSky handle. Decent feature IMO

bsky.social/about/blog/4...

14.11.2024 15:47 👍 1 🔁 1 💬 0 📌 0

Capability Abstraction Have you ever wondered how to assess detection coverage for a specific attack technique? Understanding capability abstraction may help!

More key reading for detection engineers looking to create robust detection rules

posts.specterops.io/capability-a...

14.11.2024 15:44 👍 3 🔁 0 💬 0 📌 0

@patrickhowelloneill.com I mainly post detection engineering thing, it’s up to you though.

14.11.2024 15:43 👍 0 🔁 0 💬 0 📌 0

Haha. thanks for the info!

14.11.2024 15:41 👍 1 🔁 0 💬 0 📌 0

Nice one. These packs are a pretty useful feature

14.11.2024 15:37 👍 0 🔁 0 💬 1 📌 0

Awesome, this going to be streamed?

14.11.2024 15:33 👍 1 🔁 0 💬 2 📌 0

Also, please DM me any users you think should be on here.

14.11.2024 14:27 👍 0 🔁 0 💬 1 📌 0

I am also seeing this a lot

14.11.2024 14:25 👍 0 🔁 0 💬 0 📌 0

Free for Developers Developers and Open Source authors now have a massive amount of services offering free tiers, but it can be hard to find them all to make informed decisions.

Something for the side-project people!

This is a site that shows you SaaS, PaaS, IaaS, and other solutions with free developer tiers

free-for.dev

14.11.2024 10:16 👍 0 🔁 0 💬 0 📌 0

Seeing more examples of malware sitting in the root of Public or ProgramData directories...

Use a regex like this to pin these down.

C\:\\ProgramData\\[^\\\/]{0,50}\.(exe|js|vbs|vbe|ps1|hta|bat)

14.11.2024 09:46 👍 1 🔁 0 💬 0 📌 0

Summiting the Pyramid v1.0.0 — Summiting the Pyramid v1.0.0 documentation

Key reading for anyone in cyber threat detection. They have really managed to crystallise the core strategy underprinning robust detection rules

center-for-threat-informed-defense.github.io/summiting-th...

14.11.2024 09:33 👍 1 🔁 0 💬 0 📌 0

Join if you are keen on talking Detection Engineering! #cyber #detection #edr #siem

bsky.app/profile/did:...

14.11.2024 08:01 👍 5 🔁 1 💬 0 📌 1

Hey all am here to chat all things Security, Threat Hunting, Intelligence and Detection Engineering

Can anyone recommend some open source tools to find my Twitter following list on BlueSky?

14.11.2024 07:51 👍 0 🔁 0 💬 0 📌 0

Quick pivoting tip - "Similar by imphash" on VT allows you to quickly identify other samples that have imported the same libraries and called the subsequent functions in the same order. #ThreatIntelligence #ThreatHunting

07.08.2023 03:54 👍 0 🔁 0 💬 0 📌 0

*cracks fingers*

right, onto the next social media platform

hopefully this one is good for the infosec crowd

07.08.2023 01:30 👍 5 🔁 0 💬 0 📌 0

Richard Ackroyd

Latest posts by Richard Ackroyd @richardackroyd.com