From 8bf11aa351c67688fd480fe08aa73b644db551d7 Mon Sep 17 00:00:00 2001
From: Aaron Herman <aaron@aaronherman.co>
Date: Fri, 12 May 2023 20:16:11 -0500
Subject: [PATCH] Update README.md

---
 README.md | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 9993d38..80f91cf 100644
--- a/README.md
+++ b/README.md
@@ -4,10 +4,15 @@
 - [ ] [Capturing Detection Ideas to Improve Their Impact](https://cyb3rops.medium.com/capturing-detection-ideas-to-improve-their-impact-311cf4e1c7a8)
 - [ ] [Prioritization of the Detection Engineering Backlog](https://posts.specterops.io/prioritization-of-the-detection-engineering-backlog-dcb18a896981)
 
+## Building Detection
+- [ ] [On Detection: Tactical to Functional series](https://medium.com/@jaredcatkinson)
+- [ ] [Procedural Detections to Uncover PsExec Style Lateral Movement](https://bherunda.medium.com/procedural-detections-to-uncover-psexec-style-lateral-movement-5e83932eeb7e)
+- [ ] [Hunting & Detecting SMB Named Pipe Pivoting (Lateral Movement)](https://bherunda.medium.com/hunting-detecting-smb-named-pipe-pivoting-lateral-movement-b4382bd1df4)
+
 ## Detection rulesets
 - [ ] [Elastic](https://github.com/elastic/detection-rules)
 - [ ] [Sigma](https://github.com/SigmaHQ/sigma/)
 - [ ] [Chronicle](https://github.com/chronicle/GCTI)
 
 ## Philosophical
-- [ ] [On Detection: Tactical to Functional series](https://medium.com/@jaredcatkinson)
+- [ ] [The Validated Canary: Our validation philosophy](https://redcanary.com/blog/detection-validation/)