Detection engineering¶

Detection engineering is the practice of designing, building, and testing rules that identify malicious or anomalous behaviour in your environment. With the Red Lantern simulator, you can develop and validate detection logic against known attack patterns without needing live traffic or risking production systems.

With the Red Lantern simulator, you can develop and validate detection logic against known attack patterns without needing live traffic or risking production systems.

Generic detection patterns
Wazuh decoders
Writing Wazuh rules
Other SIEM platforms

Check the Barrel's Bottom