Open in app
Sign inGet started
Advanced KQL for Threat Hunting: Window Functions — Part 2

Advanced KQL for Threat Hunting: Window Functions — Part 2

Using sliding window functions in KQL for better detection.
Go to the profile of Mehmet Ergene
Mehmet Ergene
Advanced KQL for Threat Hunting: Window Functions — Part 1

Advanced KQL for Threat Hunting: Window Functions — Part 1

Window functions can take your threat hunting and DFIR skills to a next level!
Go to the profile of Mehmet Ergene
Mehmet Ergene
An Alternative Way of Using MITRE ATT&CK® for Threat Hunting and Detection

An Alternative Way of Using MITRE ATT&CK® for Threat Hunting and Detection

Using MITRE ATT&CK framework for a better threat detection coverage
Go to the profile of Mehmet Ergene
Mehmet Ergene
Threat Hunting with Data Science: Registry Run Keys

Threat Hunting with Data Science: Registry Run Keys

Threat hunting and detection of Registry Run Keys on a large scale by using basic Data Science methods.
Go to the profile of Mehmet Ergene
Mehmet Ergene
Prevention, Detection, and Hunting Strategies for Ransomware

Prevention, Detection, and Hunting Strategies for Ransomware

The recent spread of Ryuk ransomware showed that even big companies had critical issues with their defenses. What surprised me is that…
Go to the profile of Mehmet Ergene
Mehmet Ergene
Continuous Threat Hunting

Continuous Threat Hunting

There is something not clear enough about threat hunting process…
Go to the profile of Mehmet Ergene
Mehmet Ergene
Threat Hunting and Detection with Web Proxy Logs

Threat Hunting and Detection with Web Proxy Logs

As I mentioned in my "detecting and responding to ransomware attacks" post, I created a hunting and detection guide using proxy logs…
Go to the profile of Mehmet Ergene
Mehmet Ergene
About Blu RavenLatest StoriesArchiveAbout MediumTermsPrivacyTeams