Archive - THOR Collective Dispatch

Detection-In-Depth

Eliminating detection blind spots through a multi-layered defense approach

13 hrs ago •

Stop the Spreadsheet Madness: Visualize Your Atomic Red Team Tests with VECTR

A follow-up to Simulate. Detect. Tune. Repeat.

May 6 •

Ask-a-Thrunter: The Recap Is Here 🐏

Mainly ramblings. And maybe some wisdom.

May 3 •

,

, and

34:25

Dispatch Debrief: April 2025

What We Hunted, Learned, and Loved This Month

May 1 •

April 2025

Z-Scoring Your Way to Better Threat Detection

“Normal” is just a setting on a dryer. Let’s talk about what’s actually weird in your data.

Apr 29 •

The Model(s) of D.E.A.T.H & Thrunt

There Can Only (Not) Be One

Apr 24 •

Measuring the Hunt When You Find “Nothing”

Because sometimes success looks like silence.

Apr 22 •

How Communication Shapes the Outcome of Cybersecurity Incidents

Why the timing and transparency of messaging can make or break your incident response

Apr 17 •

Audra Streetman

Simulate. Detect. Tune. Repeat.

Purple Teaming with Atomic Red Team and ATT&CK

Apr 15 •

The Power of the Trio - Part 2

Practical Implementation of the LAYER approach

Apr 11 •

Because Logs Don’t Hunt Themselves - A Deep Dive into tstats

SPL Dispatch #1 - 04/08/2025

Apr 8 •

The Power of the Trio

Introducing the LAYER Approach

Apr 3 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts