AlphaSOC
Introducing the AlphaSOC Cribl Dashboard

Introducing the AlphaSOC Cribl Dashboard

April 17, 20266 min read

The AlphaSOC for Cribl Search pack brings OCSF detection findings into a purpose-built dashboard for triage, entity analysis, and raw event inspection.

Azure Event Hubs silently truncates JSON payloads

Azure Event Hubs Silently Truncates JSON Payloads

March 23, 20265 min read

Azure Event Hubs truncates JSON logs that exceed undocumented size limits, appending '...' and producing invalid JSON with no error or warning. Here is how we found it and fixed it.

Enhanced Threat Detection With Sigma and AlphaSOC Wisdom

Enhanced Threat Detection with Sigma and AlphaSOC Wisdom

December 22, 20254 min read

AlphaSOC Wisdom brings threat intelligence directly into Sigma rules, enriching detections with domain reputation, infrastructure type, and behavioral risk flags — no external feeds required.

Sigma Correlations in AlphaSOC

Sigma Correlations in AlphaSOC

December 10, 20256 min read

AlphaSOC now supports Sigma Correlations, linking multiple events over time to produce high-confidence OCSF findings for multi-stage attack patterns that individual rules miss.

Finding Patient Zero With Security Analytics

Finding Patient Zero With Security Analytics

October 10, 20257 min read

Learn how prevalence-aware security analytics detect patient zero, the earliest compromise in a targeted attack, before SIEM-based detection can catch up.