@securityaura.bsky.social
GCIH, GCFE | DFIR, Threat Hunting, Detection Engineering | @CuratedIntel DFIR Member
SecurityAura.com
http://infosec.exchange/@SecurityAura
SecurityAura.com
http://infosec.exchange/@SecurityAura
I'll probably never do another 100Days challenge again because man, that thing is taxing. However, I do plan to continue posting KQL queries in that repo and even enhance the ones that were posted during that challenge.
Thank you to everyone who supported me! See you soon!
Thank you to everyone who supported me! See you soon!
April 13, 2025 at 2:45 AM
I'll probably never do another 100Days challenge again because man, that thing is taxing. However, I do plan to continue posting KQL queries in that repo and even enhance the ones that were posted during that challenge.
Thank you to everyone who supported me! See you soon!
Thank you to everyone who supported me! See you soon!
So stay tuned for it!
In the meantime, I hope that these queries helped you in some way: detection, hunting, learning some KQL operators/functions, serve as base ideas for more complex queries or even give you a starting point to learn KQL.
(cont)
In the meantime, I hope that these queries helped you in some way: detection, hunting, learning some KQL operators/functions, serve as base ideas for more complex queries or even give you a starting point to learn KQL.
(cont)
April 13, 2025 at 2:45 AM
So stay tuned for it!
In the meantime, I hope that these queries helped you in some way: detection, hunting, learning some KQL operators/functions, serve as base ideas for more complex queries or even give you a starting point to learn KQL.
(cont)
In the meantime, I hope that these queries helped you in some way: detection, hunting, learning some KQL operators/functions, serve as base ideas for more complex queries or even give you a starting point to learn KQL.
(cont)
This challenge ended right on time, as I'm about to embark on a SANS training starting tomorrow, which means, I wouldn't have any time next week to work on this. Life is funny sometimes.
As mentioned previously, I'll be publishing a blog post reflecting on that challenge.
(cont)
As mentioned previously, I'll be publishing a blog post reflecting on that challenge.
(cont)
April 13, 2025 at 2:45 AM
This challenge ended right on time, as I'm about to embark on a SANS training starting tomorrow, which means, I wouldn't have any time next week to work on this. Life is funny sometimes.
As mentioned previously, I'll be publishing a blog post reflecting on that challenge.
(cont)
As mentioned previously, I'll be publishing a blog post reflecting on that challenge.
(cont)