Olaf Hartong

Olaf Hartong

Olaf Hartong

FalconForce | DFIR | Threat hunter | Data Dweller | Splunk | Sysmon

Editor of FalconForce and BlueTeamLabs

Featured

Jun 7, 2018 · 5 min read

Endpoint detection Superpowers on the cheap — part 1

377

2 responses

Latest

Olaf Hartong in FalconForce

Jun 24 · 3 min read

Sysmon 11.1 Bug fixes, a schema update and a new field

13

Olaf Hartong in FalconForce

May 28 · 5 min read

Graphing MITRE ATT&CK via Bloodhound

I’ve been using slides like the image below for some time now in presentations and I regularly…

50

Olaf Hartong in FalconForce

Apr 28 · 7 min read

Sysmon 11 — DNS improvements and FileDelete events

118

1 response

Olaf Hartong in FalconForce

Mar 31 · 3 min read

The ATT&CK Rainbow of Tactics

I’ve been a huge fan of MITREs ATT&CK framework ever since its release. It has been of enormous value to…

89

1 response

Sep 6, 2019 · 3 min read

Sysmon 10.4 release

Sysmon 10.4 has been released and this is one I particularly was looking forward to ever since the release of version 9…

49