Logwatcher's Zenit 08

Logwatcher's Zenit #08: Tombs, Telemetry & Parsing

MITRE's New Detection Model Explained, in depth.

Nov 18, 2025 logwatchers-zenit

Logwatcher's Zenit 07

Logwatcher's Zenit #07: Let There Be Let

Let there be logs, and there was telemetry

Aug 29, 2025 logwatchers-zenit

KQLture Club 01

KQLture Club #01: The ❤️ of the Company

A Reaction Says More Than Thousand Replies

Jul 26, 2025 kqlture-club

Side Quest 02

Side Quest #02: VMware Tools in Fusion

Not all installations are equal

Jul 17, 2025 side-quests

Logwatcher's Zenit 06

Logwatcher's Zenit #06: Summiting the Pyramid

MITRE's New Detection Model Explained.

Jul 10, 2025 logwatchers-zenit

Logwatcher's Zenit 05

Logwatcher's Zenit #05: Beginner Mistakes in KQL

Finding your inner join in a leftouter world

Jul 3, 2025 logwatchers-zenit

Logwatcher's Zenit 04

Logwatcher's Zenit #04: VS Code for Analysts, part 2

Order in chaos is what separates a good analyst from a great one.

Jun 26, 2025 logwatchers-zenit

Logwatcher's Zenit 03

Logwatcher's Zenit #03: Histogram, the Weight Measurement of Logs

Bin it. Chart it. Peek at the peaks.

Jun 19, 2025 logwatchers-zenit

Logwatcher's Zenit 02

Logwatcher's Zenit #02: Simulating Attacks with Atomic Red Team

How to Validate Your Detection Logic Without Summoning a Real Threat Actor

Jun 12, 2025 logwatchers-zenit

Dirty Bit 01

Dirty Bit #01: Dark Theme in Sandbox

Force dark theme on launch, kill the evidence, walk away

Jun 5, 2025 dirty-bits