burritosec  
your EDR alerting on your host-based network monitoring agent alerting on your next generation firewall alerting on your SIEM log forwarding agent alerting on your newly-installed one-solution-fits-all XDR product getting quarantined by your legacy AV
Mar 13, 2023 at 8:27pmWeb
Show threadVissMar 13, 2023
@burritosec [flapjack_wonderful.wav]
Show threadVissMar 13, 2023
@burritosec
Show threadCryptoJones  ⠉⠗⠽⠏⠞⠕⠚⠕⠝⠑⠎🏳️‍🌈Mar 13, 2023
@burritosec the CS falcon agent over here just minding its own business
Show threadAndrew 🌻 Brandt 🐇Mar 13, 2023
@burritosec I'm in this picture and I'm not sure I like it
Show threadLuke HumberdrossMar 14, 2023
@burritosec Vulnerability management tool sets off SIEM, SOC analyst checks alert which in turn triggers EDR detection from malicious payload in browser cache, SOAR automation triggers, commencing phishing simulation against analyst’s mailbox as test of competency, SEG follows phish sim link on message delivery, phish sim platform begins mandatory training/punishment workflow, disabling their account, which was being used to run the original vulnerability management service.