@seb switching to Panther definitely made me appreciate how intuitive and easier to use Datadog was 😂
| https://twitter.com/SecRNG | |
| Website | https://www.secrng.com |
| Github | https://github.com/secrng |
Cy / SecRNG
- 53 Followers
- 123 Following
- 78 Posts
Security Engineer at Gusto | I do #security #infosec #detection #dfir #securityengineering things in #tech | previously Yahoo Paranoids | migrated from SecRNG@twitter
@seb but the nice thing is they are rapidly improving their product and some of the problems we had before might not even be an issue anymore
@seb their pricing model didn’t work for us (ended up being way too expensive), and during the short ish amount of time we had it, I didn’t feel like we got what we needed out of it. Mostly due to the lack of detection-as-code and data retention being an issue. Also felt like the query language felt a bit more restrictive than Splunk or Panther. There are some nice things tho, like having a lower learning curve and being able to write detections across multiple log sources out of the box.
@seb Only ever used Splunk, Datadog, and Panther. I’m leaning more towards Panther for detections and Splunk for investigations/hunting. Splunk is way too expensive though. 
Lukasz OlejnikTreat this question as about digital techniques of crowd control. To increase the confusion, the yesterday's rules on Twitter (prohibition of linking to other places like Instagram or Mastodon) are now apparently REMOVED. Anybody understands what's going on? https://help.twitter.com/en/rules-and-policies/social-platforms-policy
@dansolomon to be fair, there are many who bought one because it’s the only viable option for a good EV a few years ago, and it simply isn’t a good financial decision right now to change cars just purely based on how shitty of a person the CEO became. Also applies to people still choosing to work in Tesla/SpaceX/Twitter/etc. Not everyone can afford to just quit or something without a job lined up. It’s easy for bystanders to talk shit but people don’t always have a choice.
@robstink ah, ok. wasnt able to find where the instance notes are at, but i'll try to dig deeper. thanks!
@robstink which threat intel feed are they using?
Lol. the bird site is flagging my ioc.exchange profile URL as "malware URL" when I try to add it to either add it to website or description. is this a thing now? do domains for other mastodon instances have this problem too?
@gossithedog I feel like in some ways the pledge is a good thing, in that it at least gives a way out for employees who had been hoping to leave with some severance on the way out but weren't initially chosen to be let go. sadly, the ones who do sign it likely don't have that much of a choice because of visa issues. i suspect only a small handful are actual musky stans who are willing to sacrifice their own personal wellbeing for the sake of the billionare they worship.