Alex Teixeira – Medium

Alex Teixeira

Published in

Introducing > PowerShell.Exposed

Community-driven pattern-based detection indicators

2d ago

Introducing > PowerShell.Exposed

2d ago

Published in

Rethinking Benign Alerts: A New Perspective for Detection Engineering

Breaking down the false TP/FP dichotomy in the SOC

Dec 10, 2025

Rethinking Benign Alerts: A New Perspective for Detection Engineering

Dec 10, 2025

Published in

Introducing the DRAPE Index: How to measure (in)success in a Threat Detection practice?

Going Beyond the Cosmetics to Assess Detection Quality

Nov 17, 2025

Introducing the DRAPE Index: How to measure (in)success in a Threat Detection practice?

Nov 17, 2025

Published in

Malicious Encoded PowerShell: Detecting, Decoding & Modeling

The challenges and insights from dealing with this PS one-liner

Aug 25, 2025

Malicious Encoded PowerShell: Detecting, Decoding & Modeling

Aug 25, 2025

Published in

The Detection Opportunity Cost

What should drive picking one detection idea over another?

May 1, 2025

The Detection Opportunity Cost

May 1, 2025

Published in

Becoming a Detection Engineering Contractor, Part II— The Preparation

You want to become a contractor or an independent consultant in the Detection Engineering (DE) space? This series is for you.

Mar 26, 2025

Becoming a Detection Engineering Contractor, Part II— The Preparation

Mar 26, 2025

Published in

Threat Hunting step-by-step: Collecting Web Shells 🐚 using Ephemeral Baselines

Turning a KQL hunting query into a Defender detection rule to spot unusual web server processes using simple statistics.

Feb 25, 2025

Threat Hunting step-by-step: Collecting Web Shells 🐚 using Ephemeral Baselines

Feb 25, 2025

Published in

Baselines 101: Building Resilient, Frictionless SIEM Detections

How to leverage Enterprises' Circadian Window to spot unusual activity and potentially uncover cyber threats.

Feb 12, 2025

Baselines 101: Building Resilient, Frictionless SIEM Detections

Feb 12, 2025

Published in

Becoming a Detection Engineering Contractor, Part I — The Motivation

So you wanna become a contractor (freelancer, independent consultant) in the Detection Engineering space? Here I share my impressions.

Jan 17, 2025

Becoming a Detection Engineering Contractor, Part I — The Motivation

Jan 17, 2025

Published in

From Intelligence to Detection: A Workflow for Integrating CTI, IR, Hunting & Red Teams

In 2017, a former software tester suggested that I should consider shipping detection content by following the SDLC, and it seemed like a…

Nov 3, 2024

From Intelligence to Detection: A Workflow for Integrating CTI, IR, Hunting & Red Teams

Nov 3, 2024

Alex Teixeira

Alex Teixeira

Friend of Medium

I design and build detection and SIEM/EDR/XDR content for Enterprise #SecOps teams #DetectionEngineering http://opstune.com

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech