I will design wazuh siem decoders and detection rules

Sommige informatie wordt in het Engels weergegeven.

Marokko

Ik spreek Frans, Engels
I'm a Cybersecurity and Detection Engineer specializing in designing and optimizing security monitoring solutions that are robust, scalable, and tailored to your threat landscape. With hands-on exper...
Over deze dienst

I am a SIEM Detection Rule Developer specializing in Wazuh and Sigma detection rules for SOC and security monitoring environments.


I help organizations detect real threats, reduce false positives, and improve their MITRE ATT&CK coverage by designing custom, high-quality detection rules aligned with real-world attack techniques.


What I do:

  • Develop custom SIEM detection rules (Wazuh & Sigma)
  • Map detections to MITRE ATT&CK techniques
  • Tune and optimize rules to reduce false positives
  • Create detections based on TTPs, IOCs, and attack scenarios
  • Analyze log sources (Windows, Linux, Network, Cloud)
  • Improve SOC detection maturity (Level 1 Level 3)


Why work with me?


  • Security-focused and detection-driven approach
  • Rules designed for real attacks, not noise
  • Clear documentation and deployment guidance
  • Professional communication & fast delivery


Whether you are building a new SOC, improving your detection coverage, or tuning existing rules, I can help you detect threats faster and more accurately.

Tools:

GitLab

Framework:

Npm

Cloudprovider:

VMware cloud

Programmeertaal:

Bash

C

Python

PowerShell

Expertise:

Installatie

Migratie

Debuggen

Gerelateerde tags