Practical guides, real-world attack scenarios, and expert tutorials for building secure applications.
Learn how AI-powered IP investigation reduces manual triage from 30 minutes to seconds. Automate threat verdicts, risk scoring, and response recommendations for your SOC team.
LhoussineMarch 5Master the art of SOC notification triage with structured workflows. Learn to filter, prioritize, and resolve security alerts efficiently using status-based workflows and AI-powered investigation.
LhoussineMarch 3Reduce false positive rates in your SOC with AI-suggested exclusions, test-before-apply workflows, and intelligent path pattern matching. A practical guide to cleaner alerts.
LhoussineMarch 1Monitor and investigate thousands of IP addresses in real-time with automated threat intelligence enrichment, status tracking, and batch analysis for enterprise security operations.
LhoussineFebruary 27Design effective SQL-based security alert rules with smart throttling, channel routing, and exclusion patterns. A practical guide to reducing noise while catching real threats.
LhoussineFebruary 25A step-by-step walkthrough of how a SOC team used AI-powered investigation, alert rules, and false positive management to detect and respond to a credential stuffing attack across 47 attacker IPs.
LhoussineFebruary 23Discover how AI-driven trace analysis uncovers SQL injection, SSRF, auth bypass, and path traversal attacks that WAFs miss — by examining application behavior at the span level.
LhoussineFebruary 21Transform security investigations with natural language forensics. Ask questions in plain English and get instant SQL results from your ClickHouse trace data — no query syntax required.
LhoussineFebruary 19Automatically discover and map your entire API surface from live traffic using AI-enhanced endpoint analysis. Find shadow APIs, undocumented endpoints, and parameter patterns attackers exploit.
LhoussineFebruary 17Go beyond simple IP blocklists. Learn how SecureNow combines AbuseIPDB reputation data with application-level trace analysis for higher-confidence threat verdicts and faster incident response.
LhoussineFebruary 15Use quadrant analysis to visually identify malicious IPs, scanners, and bots by plotting traffic behavior patterns. Learn to interpret success-to-error ratios for rapid threat classification.
LhoussineFebruary 13A detailed walkthrough of detecting and stopping an API abuse campaign using API surface discovery, AI investigation, trace analysis, and forensic queries — from first alert to full remediation.
LhoussineFebruary 11A step-by-step developer guide to instrumenting your application with OpenTelemetry and connecting it to SecureNow for real-time security monitoring, threat detection, and AI-powered analysis.
LhoussineFebruary 9Learn how developers can set up security alerts on their applications without a dedicated SOC — detect 4xx spikes, error patterns, and suspicious IPs using trace-based alert rules.
LhoussineFebruary 7A developer's tutorial on writing ClickHouse SQL queries for security analytics — find suspicious IPs, detect error patterns, and analyze application traffic using trace data.
LhoussineFebruary 5A realistic scenario of how a developer discovered a compromised npm package through unusual outbound HTTP calls in OpenTelemetry trace data — and used AI analysis to confirm and contain the threat.
LhoussineFebruary 3A comprehensive walkthrough of the entire SecureNow platform — from application setup and trace ingestion through alert rules, AI investigation, forensic analysis, and incident resolution.
LhoussineFebruary 1A detailed playbook for detecting and stopping a distributed bot attack using quadrant analysis, AI investigation, AbuseIPDB enrichment, forensic queries, and false positive management.
LhoussineJanuary 30How to detect insider threats by analyzing application trace patterns — after-hours access, unusual data exports, and privilege escalation detected through forensic queries and AI investigation.
LhoussineJanuary 28A detailed comparison of trace-based application security monitoring versus traditional SIEM — covering detection fidelity, false positive rates, time-to-detection, and total cost of ownership.
LhoussineJanuary 26
Complete guide to adding enterprise-grade security monitoring to your Next.js app with SecureNow. Learn automatic setup, manual configuration, and best practices for production deployment.
LhoussineDecember 8Step-by-step guide to integrating SecureNow into your Node.js Express application using PM2. Learn how to set up automatic monitoring and security threat detection.
LhoussineNovember 7Browse articles by category