This is a small cyber threat intelligence blog where I write about anything I find interesting, or that could be helpful.

The posts here will be short writeups on things that caught my attention: a clever TTP, an emerging trend, a detection idea worth sharing (mostly KQL) or something from the news that's worth digging into a bit further.

All views are my own.