Projects
Microsoft Technologies
Sentifender Lexica Detectica
Sentifender Lexica Detectica is a Streamlit app that offers an overview of tables in Microsoft Sentinel and Defender, complete with pivot points between the tables and Kusto pivot examples. By using this tool you will get a better understanding on how you can move between the various tables.
Sentifender Lexica Detectica is available here
Threat Hunting
Threat Hunt by Predefender
My notebook on Threat Hunting. This page serves as a compendium of my insights into Threat Hunting, presented in book format. After years of establishing SOC departments for several Norwegian cybersecurity firms while actively working as a threat hunter, I’ve chosen to share my notes and reflections on the craft of threat hunting. Now, as I transition into managing a Cyber Security Operations Center (CSOC), I believe it’s time to impart my perspective to empower SOC analysts to start as effective threat hunters from the outset.
Threat Hunt by Predefender is available here
Threat Hunting Workstation
The Threat Hunting Workstation is a complete toolkit designed to help teams establish a dedicated environment for efficient threat hunting. It features a SIEM tool for log importing and analysis, a wiki for documentation, and essential utilities for hunting and incident management. Delivered as an installation script for a virtualized instance of Alma Linux, this workstation offers a centralized, powerful solution to enhance team collaboration and streamline security operations.