SIEM systems assist businesses in detecting and responding to security threats.
However, recent research by Rafael Uetz, Marco Herzog, Louis Hackländer, Simon Schwarz, and Martin Henze shows that adversaries can circumvent 43% of established SIEM rules. They suggest a novel approach based on machine learning.
Find the full paper at <a target="_blank" href="https://www.usenix.org/system/files/sec23winter-prepub-112-uetz.pdf">https://www.usenix.org/system/files/sec23winter-prepub-112-uetz.pdf</a>.
Find their implementation at <a target="_blank" href="https://github.com/fkie-cad/amides">https://github.com/fkie-cad/amides</a>.
<hr />
<img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1711370264428/ae8ddd0a-ad2e-4760-8d43-1202180b503b.png" alt class="image--center mx-auto" />

SIEM systems assist businesses in detecting and responding to security threats.

However, recent research by Rafael Uetz, Marco Herzog, Louis Hackländer, Simon Schwarz, and Martin Henze shows that adversaries can circumvent 43% of established SIEM rules. They suggest a novel approach based on machine learning.

Find the full paper at [https://www.usenix.org/system/files/sec23winter-prepub-112-uetz.pdf](https://www.usenix.org/system/files/sec23winter-prepub-112-uetz.pdf).

Find their implementation at [https://github.com/fkie-cad/amides](https://github.com/fkie-cad/amides).

---

![](https://cdn.hashnode.com/res/hashnode/image/upload/v1711370264428/ae8ddd0a-ad2e-4760-8d43-1202180b503b.png align="center")

Securing Bits

Securing Bits

Security Information and Event Management Systems (SIEM)