KQLture Club 01

KQLture Club #01: The ❤️ of the Company

A Reaction Says More Than Thousand Replies

Jul 26, 2025 kqlture-club

Side Quest 02

Side Quest #02: VMware Tools in Fusion

Not all installations are equal

Jul 17, 2025 side-quests

Logwatcher's Zenit 06

Logwatcher's Zenit #06: Summiting the Pyramid

MITRE's New Detection Model Explained.

Jul 10, 2025 logwatchers-zenit

Logwatcher's Zenit 05

Logwatcher's Zenit #05: Beginner Mistakes in KQL

Finding your inner join in a leftouter world

Jul 3, 2025 logwatchers-zenit

Logwatcher's Zenit 04

Logwatcher's Zenit #04: VS Code for Analysts, part 2

Order in chaos is what separates a good analyst from a great one.

Jun 26, 2025 logwatchers-zenit

Logwatcher's Zenit 03

Logwatcher's Zenit #03: Histogram, the Weight Measurement of Logs

Bin it. Chart it. Peek at the peaks.

Jun 19, 2025 logwatchers-zenit

Logwatcher's Zenit 02

Logwatcher's Zenit #02: Simulating Attacks with Atomic Red Team

How to Validate Your Detection Logic Without Summoning a Real Threat Actor

Jun 12, 2025 logwatchers-zenit

Dirty Bit 01

Dirty Bit #01: Dark Theme in Sandbox

Force dark theme on launch, kill the evidence, walk away

Jun 5, 2025 dirty-bits

Side Quest 01

SideQuest #01: How To Virtualise Sequoia

Converting Install macOS Sequoia.app to an ISO file

Jun 2, 2025 side-quests

Logwatcher's Zenit 01

Logwatcher's Zenit #01: VS Code for Analysts, part 1

Here's how to let your keyboard to the hunting.

May 29, 2025 logwatchers-zenit