Arnold van Wijnbergen
Arnold van Wijnbergen
Sysmon helps to extract a lot of information using EBPF. This also could work inside your Kubernetes (AKS Support) cluster. Currently the blocking issue is that we need to install...
Is there a possibility to change to OUTPUT file to a custom /var/log destination ? In some cases you want to use for example /var/log/sysmon instead of the standard syslog,...
Hi, Just curious if this functionality is available. I couldn't see this. In our use case we also need to be able to restore single dashboard (using the dashboard file...
**Describe the bug** Maybe doing things wrong here, but the capture isn't uploaded to the SAS URL. Seems to be complaining. Followed the [documentation](https://retina.sh/docs/captures/). Seems to be a little bit...
**Describe the bug** Can't build binary as described in the [documentation](https://retina.sh/docs/installation/cli). Seems missing in Makefile make install-kubectl-retina **To Reproduce** Steps to reproduce the behavior: git clone https://github.com/microsoft/retina.git make install-kubectl-retina make:...
## Readiness Checklist - [X] I am running the latest version ==> Tried terraform v1.9.5 and older v1.4.7. - [X] I checked the documentation and found no answer ==> Followed...
Change(s): - New Solution for exchanging / sharing Threat Intelligence using a Playbook from Microsoft Sentinel to a TAXII Server. this is build in collaboration with both Microsoft NL and...
Using this PR I like to propose the discussion introducing LLM Prompts as pattern type for Indicators. Many domain experts see the growth of evil prompts. From solely LLM, MCP...