I'm Michalis Michalos (aka cyb3rmik3) and in this github you will find primarly KQL queries associated to Microsoft Defender XDR (Formerly known as 365 Defender) and Microsoft Sentinel as well as notes and resources for various cyber security tools that I use for investigations and analysis.
Title | Date |
---|---|
ElasticIQ Ransomware in the Cloud: Scattered Spider Targeting Insurance and Financial Industries | 02/10/2024 |
Endpointcave Newsletter July 2024 | 14/07/2024 |
This week in 4n6 newsletter | 30/06/2024 |
Kusto Insights - April Update | 07/05/2024 |
Tech news for the week of April 8th, 2024 | 08/04/2024 |
This week in 4n6 newsletter | 31/03/2024 |
The Generatrive Partner Crucible | 09/02/2024 |
KQL Security Sources - 2024 Update | 14/01/2024 |
Kusto Insights - December Update | 02/01/2024 |
Forensic Focus Digital Forensics Round-Up | 30/11/2023 |
Endpointcave Newsletter #6 2023 | 19/11/2023 |
Detection Engineering Weekly #47 | 15/11/2023 |
PGP Public Key 🔒
-----BEGIN PGP PUBLIC KEY BLOCK-----
mQGNBGGTw0oBDADRP0lluTJy770/wlUgNZp8qe8Pq97DkfOYxBGYTJzDPVmX8ErZ
R2XBMbwntwzb2A/gkX41y7v1d6r15Oy4rCWVdbJwiBcLeIWpYXfqRQLQlggNNMhf
l7zBGWzqvOa5yK3SOTSON8uEdxPachgyivBa0VUN24TAUqvNj7jzIuf/xHzWgvmF
JxmHJLDW vTJJkwCcRQGXgNMlu3HfXXD7FgHSiLXtyrLV70jXOftASrOVHPdJ1SV
rwDlFmwAFIPdpgjnJlYX4C9ejR4HYUP21LN7/Vz38SPzlxl3zNGc7KZ8p9KY9 w0
u69Q35JXiiSpJZ9SH3MeKEgfxFMls7u/3F WZEp7REqMZQCyZ7o3vmN/E7gFAEpP
HGUVLCoK8M4SsN0ahqvYuFttfJGrkbu9SKjSx7lP1nfKiORngUtXVIdxQzcppgzE
UZr2fuWCzPJn8xvQgZ87qHz9Vi m4ZdI0riKUsMAVBO2xcb8U8GfudovClkK6su1
3NdpNGyLYxLGVscAEQEAAbQpTWljaGFsaXMgTWljaGFsb3MgPG1pY2hhbGlzQG1p
Y2hhbG9zLm5ldD6JAdQEEwEIAD4WIQR7sJsdN7q hPqkaQaiYY5u/wU5bAUCYZPD
SgIbAwUJEs5j1gULCQgHAgYVCgkICwIEFgIDAQIeAQIXgAAKCRCiYY5u/wU5bH7T
C/4qxRdSOtPFwswEIwIa0yw/z9BEjGHP1t1yOeTU3b3nN /hoDnOJwwxBWe/WGdi
jNmG7FrJkDX8Xm0Q HCF4l1TdnP4EuopMv6T6xTfuT3A zdOA/AZ3b4HkRiBObCz
BCjl6rtsLvoaUgdAyF04slQza7Z9okbboqv eL0Ehjm64RewcM0SDY6cqQFPxDCW
r WTao4S2jLiqbe9e9ncW/23JXqYo yG6I1PkAWtxdas7FyKa3 bSLuO4kthAviM
7xPoNoJ ovw5M6XS/umR AVcoe0OiF01EcolGwVCDcumWHc9FEMY0V4V D/g1CaS
K9FG3qHwKq7LJUlcDPAe5gKkgUAmIrdYC14P08rss3eTp/3GyW59GMNqvxoF8aDw
k pf6 HYM NBAP0iFjWlRS2rNYACx4V1GENzyl7XIhEAy0gUfTyL1FteL5fjs9r3
YZq9Fb4 Wj3wKQ7 LCEWi5RFgzfiDV8h26RRrY6Glxz56H MisD0QSo8f3ZWnoAF
siO5AY0EYZPDSgEMAND0CmEGI1du0A9z7JEiH riki5KzL3fxyNjIrEuwqz44TYF
iyFrRp1hT0SbD mAyx6EzNvRy3umSYx2d ApWwXS/XGZ7W2JwptXNLmJV1DqyUQ
2ToN3Y5KxfOE7xj OOwenkHv/qE68Gm2pHRpHusXO9OevWWqdPtDqTTydH7ZBg5u
vJYqyRXiMIrjnJPuBne6JiLDUyq0rBu OnpI8EAuGCr92QOLOdDFKeWKPz vqqW8
ueCYedWCekEQoTI8WaGJj3cKk2Pj8PXl11VsResA5g5xZxwspFSQK8FKholIR8Ao
86 gJfkM7P8dFF7PwC9aKLtcdM7taijntVdGxqr16la3td700D7DQzNbI wd//Kj
f6Gl/3msN1cMFfs7b6FP0X7a2gwbtpU030e3weAMNYa/ERfwnzJv5bJ5R3x6pCxd
FnsCAOrKhqi3jjPO6AsEx6SRH7m6dQ6KwjOrj72vA3dmVz T/MILuZBPaFHsPEaR
CAycvbzW1dANnY7kCwARAQABiQG8BBgBCAAmFiEEe7CbHTe6voT6pGkGomGObv8F
OWwFAmGTw0oCGwwFCRLOY9YACgkQomGObv8FOWyktAv9GiS8RCXZ0R/2Txjofm3L
A WqUOSoiUiy2DEwYW4Do4dED J33GRTdWZ5a4Nf4Q60FxiD6tqQ8Ru/7epfm41S
qNUrYH3ndEjRN0Q7KLfux6f66yQMbJZt5cVIAxrRYmBmKXQlsSb jXtdMmoFUSNe
/DhCBp MW/h0oyHqB3blnILmc5WOGJR0ji/Brl0YugaFN4qz3L2o1KQSkgRhYSSz
EQMNU57FzfVKmq9vRvbaZa8yMU7Njb2aeHhKsHEbKkhS7P3MZpfgjjFO5IoEJCwa
2ZrQ69kGGUOdM6E 9bfIUq34yNT2WsLD6xPsLio0Lgq zl7U78SDl8h0mZDdGqZ
EMo75FCSVEWTij45qrnQUzW0had8EPWO1kSKyGai1XRuPHLd7dOcQpFGasAGzrNQ
8cYEVVoMfHY5x2yPeWjWx7JFMHrCJoyIi35uNKd9Nkas2ERItr5Tje4C eZtOOYM
48w3LzOrH6oDHCiJ3WswB7aEvqVksarVG1gRukjxj8K
=0ES0
-----END PGP PUBLIC KEY BLOCK-----
Disclaimer 📔
The views and opinions expressed herein are those of the author and do not necessarily reflect the views of the employer.