KQL Search

Search engine for KQL Queries

Cloud Resource Deletion

Author: Bert-Jan PalsReleased: 6/21/2024

Most Permissive Entities

Author: Bert-Jan PalsReleased: 6/20/2024

RBAC Changes

Author: Bert-Jan PalsReleased: 6/19/2024

MDE Audit

Author: Alex VerboonReleased: 6/17/2024

Automation Account Runbook Status

Author: Alex VerboonReleased: 6/17/2024

Identify Endpoints Running Wsl Without Mde Plug In

Author: Michalis MichalosReleased: 6/16/2024

Identify Endpoints Running Wsl

Author: Michalis MichalosReleased: 6/15/2024

Email Countby Country

Author: Rod TrentReleased: 6/10/2024

Security Event Malformed Security Descriptor

Author: Jose Sebastián CanósReleased: 6/10/2024

Ransomware Leaksite Montitoring

Author: Bert-Jan PalsReleased: 6/10/2024

TI Threatviewio Feed In Email Url Info

Author: Benjamin ZulligerReleased: 6/7/2024

Chat GPT Usage Detection In Network Traffic

Author: Muzammil MahmoodReleased: 6/7/2024

Ai TM Phishing Compromised Account Validation

Author: Prasanth (@mgprasanth)Released: 6/7/2024

Weekly Security Incident Comparison

Author: Muzammil MahmoodReleased: 6/7/2024

CIDRASN Details For The Remote I Ps Connections Attempts

Author: Sergio AlbeaReleased: 6/7/2024

RDP Connections From Devices To Remote IP Classified By Country

Author: Sergio AlbeaReleased: 6/7/2024

Search For Webmail Users

Author: Muzammil MahmoodReleased: 6/7/2024

Successful Foreign Login Attempts Analysis

Author: Muzammil MahmoodReleased: 6/7/2024

Malicious QR Code File Attachment Found

Author: H1dd3n00bReleased: 6/7/2024

TI Open Phish Free Feed Hits In Email Url Info

Author: Benjamin ZulligerReleased: 6/7/2024

Users Affected By MFA Enforcement

Author: Sergio AlbeaReleased: 6/7/2024

Consumer VPN Logins

Author: @jbaz_tReleased: 6/7/2024

Communication To Threatintelconz Feed IP

Author: Benjamin ZulligerReleased: 6/7/2024

Azure Resource IAM Access Delgation

Author: Gordon WallumReleased: 6/7/2024

Open Phish Urls In Emails

Author: Benjamin ZulligerReleased: 6/7/2024

Microsoft Entra ID User Removal

Author: Wessel Hissink (@WesSec_)Released: 6/7/2024

Weekly Email Security Analysis

Author: Trevor HawthornReleased: 6/7/2024

Intune Device Enrollment Information

Author: Jason Walker (@tezna) Released: 6/7/2024

Signin After Url Click

Author: Phong HuynhReleased: 6/7/2024

MCAS Low Score App Usage Report

Author: Muzammil MahmoodReleased: 6/7/2024

Communication To Greensnowco IP Blacklist

Author: Benjamin ZulligerReleased: 6/7/2024

Outlook Monikerlink Zeroday

Author: @b41ssReleased: 6/7/2024

Windows RDP Logon Sessions

Author: Jason Walker (@tezna) Released: 6/7/2024

Nf Ransomware Leaksite Monitoring

Author: Bert-Jan PalsReleased: 6/7/2024

The Art Of Knowing Your Data

Author: Bert-Jan PalsReleased: 6/4/2024

Manual Antivirus Scans

Author: Bert-Jan PalsReleased: 6/4/2024

Entra ID Tenant Restriction Failed Signin

Author: Alex VerboonReleased: 6/3/2024

MDI Honeytoken Was Queried Via SAM R

Author: Alex VerboonReleased: 6/3/2024

MDI Audit Health Issue

Author: Alex VerboonReleased: 5/31/2024

Live Response Unsigned Power Shell Changes

Author: Bert-Jan PalsReleased: 5/30/2024

Multiple Unexpected Named Pipes On Multiple Devices

Author: Jose Sebastián CanósReleased: 5/30/2024

Offboarding Package Downloaded

Author: Bert-Jan PalsReleased: 5/27/2024

Device Removed From Isolation

Author: Bert-Jan PalsReleased: 5/26/2024

Live Response File Collection

Author: Bert-Jan PalsReleased: 5/25/2024

Multiple Suspicious Device Name

Author: Jose Sebastián CanósReleased: 5/24/2024

Identity Logon Events Unusual Delegated Resource Access

Author: Jose Sebastián CanósReleased: 5/24/2024

Alert Supression Added

Author: Bert-Jan PalsReleased: 5/24/2024

Device Isolation

Author: Bert-Jan PalsReleased: 5/23/2024

Rcloneconfigfile

Author: Ali HusseinReleased: 5/23/2024

Rclone File Properties

Author: Ali HusseinReleased: 5/23/2024

Loading...