Cruciani David
Security researcher at CIRCL since 2021. Core developer of Flowintel, Typosquatting-finder, Forensic Analyst, and other projects.
Passionate road cyclist in my free time.
Sessions
Incident response and threat intelligence teams often face a paradox: vast amounts of information, yet no structured way to manage cases, tasks, and collaborative workflows. This leads to duplicated efforts, knowledge silos, and slower response times.
FlowIntel, an open-source case and task management platform, bridges this gap by providing analysts with a modern, flexible environment to organize investigations.
As threat landscapes evolve, managing and trusting detection rules has become as critical as creating them. Detection engineering teams struggle with rule duplication, inconsistent quality, false positives, and the lack of a trusted, community-driven repository to share validated rules.
Rulezet is an open-source framework and platform designed to address these challenges. It provides a unified way to normalize, validate, and manage detection rules across multiple formats while fostering a collaborative ecosystem where rule authors, analysts, and engineers can review, evaluate, and improve detection logic together.