This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question
Community Blog
This blog section is a place where community members can hear from Googlers, customers, and partners and get tips, advice, and information about topics across Google Cloud Security.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Blog Articles

New to Google SecOps: Saved Searches

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on November 30th, 2024 and introduces Saved Searches within the UDM search interface.

New to Google SecOps: Summer 2024 User Mailbag - Part 1

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on July 13th, 2023 and is a question and answer session based on user questions raised over the past few months.

New to Google SecOps: First and Last Seen

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on June 22nd, 2023 and demonstrates how first and last seen can be used for rule building in YARA-L.

New to Google SecOps: Grouped Fields

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on June 8th, 2023 and introduces the concept of Grouped Fields within the UDM search interface.

New To Google SecOps: Adding Prevalence to Your Analysis

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on April 20th, 2023 and introduces prevalence in Google SecOps and how it can be applied to YARA-L rules for domains, ip addresses and file hashes.

New to Google SecOps: Building Rules with Your Own Threat Intel Part 2

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on April 13th, 2023 and continues to examine how to integrate your own threat intelligence into Google SecOps and outputting additional context from your YARA-L rule.

New to Google SecOps: Safe Browsing Integration

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on March 9th, 2023 and introduces how Safe Browsing can be used with Google SecOps to drive greater awareness around suspicious binaries.

New to Google SecOps: Contextual Awareness

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on February 2nd, 2023 and introduces contextual awareness, the ability for assets and user stores to automatically associate events and entities together and how these entity values can be searched.

New to Google SecOps: A Potpourri of Functions

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on January 9th, 2023 and introduces additional functions around dates and numeric values that we have not covered in previous blogs.

Turn Intelligence into Action with Google Chronicle Security Operations

Organizations can now uncover more threats with less effort with Applied Threat Intelligence in Google Chronicle Security Operations. Our intelligence-driven security operations takes on the burden of operationalizing Google’s threat intelligence to unlock deeper threat hunting and investigation workflows, helping teams become more efficient.

New to Google SecOps: A New View for Search

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on November 16th, 2022 and introduces the UDM search interface.

Fastest Two Minutes in SecOps: Threat Hunting [Part 2] [Video]

You give us two minutes, we'll give you the world of SecOps. In Part Two of our "threat hunting" episode, Google Cloud Principal Security Strategist John Stoner offers three approaches you can consider when jumping into a hunt and why having a strategy — including the day you start the hunt — matters.

 by
  • 0 Likes
  • 0 Comments
  • 43 Views

Fastest Two Minutes in SecOps: Threat hunting [Part 1] [Video]

You give us two minutes, we'll give you the world of SecOps. In this episode, Google Cloud Principal Security Strategist John Stoner breaks down the merits of threat hunting and shares why, depending on the maturity of your detection and response capabilities, the practice may not be right for everybody.

 by
  • 0 Likes
  • 0 Comments
  • 46 Views

New to Google SecOps: The Replacements

The “New to Chronicle” blog found on chronicle.security has moved to the Community Blog. This blog was originally published on November 7th, 2022 and introduces the re.replace function for use in YARA-L rules and demonstrates its use with other regex and base64 decode functions.

Fastest Two Minutes in SecOps: Cloud Security [Video]

You give us two minutes, we'll give you the world of security operations. This episode of "Fastest Two Minutes in SecOps" boils down a very big conversation -- cloud security -- into something digestible. Google Cloud Head of Adoption Engineering Dave Herrald explains how the changing security boundaries of the cloud prompt the need for new security controls, shares how your team needs to be built, and discusses why IAM is so critical.

 by
  • 0 Likes
  • 0 Comments
  • 70 Views
Top Liked Authors
View all