ADTrapper is a platform for analyzing Windows Active Directory authentication logs. It offers over 50 detection rules, anomaly analysis, and visualizations to help cybersecurity professionals identify threats. Users can upload logs anonymously and run the tool easily with Docker.

Sumo Logic has been named among the top five in Gartner's 2025 Critical Capabilities for Security Information and Event Management (SIEM). The report highlights the platform's advanced features, including AI-driven insights and threat detection, which help organizations modernize their security operations.

This article explains how the MITRE ATT&CK framework helps security teams shift from reactive threat detection to proactive defense. It describes how ATT&CK maps attacker behavior and techniques, enabling better visibility and understanding of security threats. The piece also emphasizes the importance of using modern analytics tools to enhance detection capabilities.

Okta has open-sourced a series of Sigma-based queries for Auth0 users to enhance their ability to detect account takeovers and suspicious activities in event logs. The Customer Detection Catalog allows security teams to integrate these pre-built detection rules into their monitoring systems, improving threat detection capabilities while encouraging community contributions for ongoing development.

WorkOS Radar is a real-time authentication protection system that enhances security by detecting various threats such as bots, brute force attacks, and impossible travel scenarios. It integrates with WorkOS's AuthKit SDK, allowing for detailed monitoring and customizable security rules based on user behavior. The system employs a multi-stage decision-making process to evaluate authentication attempts, providing organizations with robust defenses against modern security threats.