Detection as Code: Detection Development Using CI/CD


Posted on in Presentations

This talk will introduce a modern approach of detection engineering using continuous integration, continuous delivery and continuous deployment (CI/CD). CI pipelines are introduced in order to automate the detection rule testing process with the open source tool Attack Range, which allows users to simulate adversary attacks in a lab environment.

Participants
Patrick Bareiss

Participant

Senior Security Research Engineer, Splunk

Jose Hernandez

Participant

Director Splunk Threat Research Team, Splunk


Share With Your Community