THOR Collective Dispatch

THOR Collective Dispatch

Home
Podcast
Notes
Archive
Leaderboard
About
Dispatch Debrief: November 2025
The month where AI said “I can run the SOC!” and immediately turned into the problem.
  Sydney Marrone
Aligning Risk Management and Threat-Informed Defense Practices (Part 2)
We’re back with part two of a series analyzing how to align common GRC tasks/teams with SecOps and threat-informed defense practices.
  Micah VanFossen
Purple Teaming in the Real World: When Everything Goes Off the Rails (and That’s Normal)
People love the glossy version of purple teaming:
  John Grageda
The PEAK Threat Hunting Template You'll Wish You Had Sooner
Because screenshots of queries aren’t documentation.
  Sydney Marrone
The Autonomous SOC (Taylor’s Version)
Opening Act: Welcome to the SOC Show
  Sydney Marrone and Kassandra Murphy
Hunting Beyond Indicators - Part 2
Introduction
  Sam Hanson
Ask-a-Thrunt3r: October 2025 Logtoberfest Edition 🍺🐏
Mainly ramblings. And maybe some wisdom.
  Lauren ProehlSydney MarroneJohn Grageda, and Damien Lewke
1:00:13

October 2025

Dispatch Debrief: October 2025
Seven Dispatch drops that prove hunting smarter beats hunting harder.
  Sydney Marrone
From the Fire: Q3FY25
Living off the land, hiding in plain sight, and outsmarting controls.
  Lauren Proehl
Aligning Risk Management and Threat-Informed Defense Practices (Part 1)
Cybersecurity is a complex field full of unique, specialized disciplines.
  Micah VanFossen
Sliver Armory in Action: Bringing Sliver Armory BOFs to Purple Teaming
When I first wrote about Sliver beacons in purple teaming, the point was simple: implants aren’t just red-team toys, they’re teaching tools for…
  John Grageda
Hunting Beyond Indicators
Indicators of Compromise (IOCs) are a powerful tool for security analysts and researchers to identify, track, and discover threat actor infrastructure…
  Sam Hanson
© 2025 THOR Collective · PrivacyTermsCollection notice
Start your SubstackGet the app
Substack is the home for great culture