#detectioncoverage — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #detectioncoverage, aggregated by home.social.

Claus Cramon Houmann @[email protected] · 2026-01-21 · 09:29 UTC

@timb_machine One day when we read links like https://br0k3nlab.com/resources/axioms-of-security-and-rule-based-capabilities/ people will have read the #OpenTide white paper and realized how it changes the conversation about #detectioncoverage but this day was not today.

#opentide #detectioncoverage
Claus Cramon Houmann @[email protected] · 2025-12-10 · 16:30 UTC

Despite the promising title of this blog post by John Vester 'Why the MITRE ATT&CK Framework Actually Works', its a load of crock.
You can't and shouldn't use MITRE #ATT&CK to prove any sort of detection coverage or 'strong points'. At best, you can prove total absence in certain subtechniques.
If you want to do any sort of data driven #detectioncoverage you need #OpenTide -> there's no way around it.
https://levelup.gitconnected.com/why-the-mitre-att-ck-framework-actually-works-29ac26d2d20c
ATT&CK is still ♥️ 😍 tho.
#SOC #blueteam #detectionEngineering

#att #detectioncoverage #opentide #soc #blueteam #detectionengineering