{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":803253668,"defaultBranch":"main","name":"KQL-Threat-Hunting","ownerLogin":"H1dd3n00b","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2024-05-20T11:24:36.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/137111993?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1716204277.839196","currentOid":""},"activityList":{"items":[{"before":"e013e24ee491478ad8904c09e0106eb6fdf2d858","after":"dc18219e0e86af18319d77b7764e4c96a3a7120e","ref":"refs/heads/main","pushedAt":"2024-08-08T07:41:10.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update Suspicious Emails Using Date-Time References.md","shortMessageHtmlLink":"Update Suspicious Emails Using Date-Time References.md"}},{"before":"c2476f20659586d68060a0945e022e34d592032a","after":"e013e24ee491478ad8904c09e0106eb6fdf2d858","ref":"refs/heads/main","pushedAt":"2024-08-06T15:53:06.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update README.md","shortMessageHtmlLink":"Update README.md"}},{"before":"ec0c41b39e4fe4edc8370437d6c814dc5bdf0fb3","after":"c2476f20659586d68060a0945e022e34d592032a","ref":"refs/heads/main","pushedAt":"2024-08-06T15:51:21.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Create PsExec Elevated Privileges Shell Detected.md","shortMessageHtmlLink":"Create PsExec Elevated Privileges Shell Detected.md"}},{"before":"4fc511edc5bd881d6cbbbdd7a04c24637e18373b","after":"ec0c41b39e4fe4edc8370437d6c814dc5bdf0fb3","ref":"refs/heads/main","pushedAt":"2024-08-06T14:15:36.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update and rename Suspiciously Long SenderDisplayName Detected in Received Email.md to Suspiciously Long SenderDisplayName.md","shortMessageHtmlLink":"Update and rename Suspiciously Long SenderDisplayName Detected in Rec…"}},{"before":"89fd91f9b7586aaed03ef0a643d6540049a18c22","after":"4fc511edc5bd881d6cbbbdd7a04c24637e18373b","ref":"refs/heads/main","pushedAt":"2024-07-26T09:28:16.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update Suspicious Strings Detected in Email Subject.md","shortMessageHtmlLink":"Update Suspicious Strings Detected in Email Subject.md"}},{"before":"6fd9917b91ef37f7ca7fd6beb044636210b81df2","after":"89fd91f9b7586aaed03ef0a643d6540049a18c22","ref":"refs/heads/main","pushedAt":"2024-07-19T11:44:45.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update Suspicious Strings Detected in Email Subject.md","shortMessageHtmlLink":"Update Suspicious Strings Detected in Email Subject.md"}},{"before":"cf80a49d7bbc7d2d42d6686a6c4288ec2077e012","after":"6fd9917b91ef37f7ca7fd6beb044636210b81df2","ref":"refs/heads/main","pushedAt":"2024-07-17T13:14:07.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update Enabled Account Password Spray Attempt.md","shortMessageHtmlLink":"Update Enabled Account Password Spray Attempt.md"}},{"before":"f8e57ec6ecfe13132cdc54662cbce600dfc57e93","after":"cf80a49d7bbc7d2d42d6686a6c4288ec2077e012","ref":"refs/heads/main","pushedAt":"2024-07-17T13:02:31.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update and rename Enabled Account Password Spray Attempt to Enabled Account Password Spray Attempt.md","shortMessageHtmlLink":"Update and rename Enabled Account Password Spray Attempt to Enabled A…"}},{"before":"6368525c62fc2126ccdded64dc9b0e691b8ccdac","after":"f8e57ec6ecfe13132cdc54662cbce600dfc57e93","ref":"refs/heads/main","pushedAt":"2024-07-17T13:01:36.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update and rename Password Spray Detected.md to Enabled Account Password Spray Attempt","shortMessageHtmlLink":"Update and rename Password Spray Detected.md to Enabled Account Passw…"}},{"before":"1f7c709941f524f299347fa6093386e0cd6575c6","after":"6368525c62fc2126ccdded64dc9b0e691b8ccdac","ref":"refs/heads/main","pushedAt":"2024-07-17T11:31:52.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update Password Spray Detected.md","shortMessageHtmlLink":"Update Password Spray Detected.md"}},{"before":"0b9c3497858229616fac6a3b20ccd9356bfeead4","after":"1f7c709941f524f299347fa6093386e0cd6575c6","ref":"refs/heads/main","pushedAt":"2024-07-17T11:22:59.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update Password Spray Detected.md","shortMessageHtmlLink":"Update Password Spray Detected.md"}},{"before":"f5b32a47feec626ff6aa4bf6c0af18e7f8416701","after":"0b9c3497858229616fac6a3b20ccd9356bfeead4","ref":"refs/heads/main","pushedAt":"2024-07-13T15:25:17.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Add files via upload","shortMessageHtmlLink":"Add files via upload"}},{"before":"fed46100bdbade89e0d121967b5b9ad9322a5c8b","after":"f5b32a47feec626ff6aa4bf6c0af18e7f8416701","ref":"refs/heads/main","pushedAt":"2024-07-13T15:24:12.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Add files via upload","shortMessageHtmlLink":"Add files via upload"}},{"before":"86afcbf3da89bd4a78a781419dcb91a4778bbd8e","after":"fed46100bdbade89e0d121967b5b9ad9322a5c8b","ref":"refs/heads/main","pushedAt":"2024-07-13T15:22:47.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Add files via upload","shortMessageHtmlLink":"Add files via upload"}},{"before":"7b2da7fbebc4452523c7e39d30cf955ac3d976cc","after":"86afcbf3da89bd4a78a781419dcb91a4778bbd8e","ref":"refs/heads/main","pushedAt":"2024-05-21T19:05:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update README.md","shortMessageHtmlLink":"Update README.md"}},{"before":"bc1ba1cd308933efe19e8067896d02c692f06793","after":"7b2da7fbebc4452523c7e39d30cf955ac3d976cc","ref":"refs/heads/main","pushedAt":"2024-05-20T11:43:30.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update README.md","shortMessageHtmlLink":"Update README.md"}},{"before":"99449566bb24a40847e94f48e5804bf35a448e84","after":"bc1ba1cd308933efe19e8067896d02c692f06793","ref":"refs/heads/main","pushedAt":"2024-05-20T11:43:04.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update README.md","shortMessageHtmlLink":"Update README.md"}},{"before":"b8bc08d7d0346ab8f709ec525e52aba259a3bed2","after":"99449566bb24a40847e94f48e5804bf35a448e84","ref":"refs/heads/main","pushedAt":"2024-05-20T11:41:29.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update README.md","shortMessageHtmlLink":"Update README.md"}},{"before":"17840aa921dd5bcf15f31abb14daa999ba050caf","after":"b8bc08d7d0346ab8f709ec525e52aba259a3bed2","ref":"refs/heads/main","pushedAt":"2024-05-20T11:38:21.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Update README.md","shortMessageHtmlLink":"Update README.md"}},{"before":"b61890bfce74b3ceabd9c12b79b0631207209e49","after":"17840aa921dd5bcf15f31abb14daa999ba050caf","ref":"refs/heads/main","pushedAt":"2024-05-20T11:35:17.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Add files via upload","shortMessageHtmlLink":"Add files via upload"}},{"before":"0d195262239222d6cf61013ac4ac7e944fe1e5ae","after":"b61890bfce74b3ceabd9c12b79b0631207209e49","ref":"refs/heads/main","pushedAt":"2024-05-20T11:34:53.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Create New Administrator Access Detected on OneDrive.md","shortMessageHtmlLink":"Create New Administrator Access Detected on OneDrive.md"}},{"before":"b486c7d3949dc09d7529da6a05459aff8abd7e08","after":"0d195262239222d6cf61013ac4ac7e944fe1e5ae","ref":"refs/heads/main","pushedAt":"2024-05-20T11:34:18.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Create NTDS.dit Credential Dump Performed on a Domain Controller.md","shortMessageHtmlLink":"Create NTDS.dit Credential Dump Performed on a Domain Controller.md"}},{"before":"1f86382fc54a8c14e71752221e70f43ff88087a2","after":"b486c7d3949dc09d7529da6a05459aff8abd7e08","ref":"refs/heads/main","pushedAt":"2024-05-20T11:33:41.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Add files via upload","shortMessageHtmlLink":"Add files via upload"}},{"before":"2e472e04a22037ed9ff29f678deaccc789c66d72","after":"1f86382fc54a8c14e71752221e70f43ff88087a2","ref":"refs/heads/main","pushedAt":"2024-05-20T11:33:22.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Create Right-to-Left Override Email Attachment Detected.md","shortMessageHtmlLink":"Create Right-to-Left Override Email Attachment Detected.md"}},{"before":"b49f5b02e58c3b38959a34414dd86795f0378ec4","after":"2e472e04a22037ed9ff29f678deaccc789c66d72","ref":"refs/heads/main","pushedAt":"2024-05-20T11:32:13.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Add files via upload","shortMessageHtmlLink":"Add files via upload"}},{"before":"27b8420790b0590364ab21a60ee126d80fe2b7d1","after":"b49f5b02e58c3b38959a34414dd86795f0378ec4","ref":"refs/heads/main","pushedAt":"2024-05-20T11:31:55.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Create Anomalous Amount of Activity Performed by a Dormant Account.md","shortMessageHtmlLink":"Create Anomalous Amount of Activity Performed by a Dormant Account.md"}},{"before":"3303246ac2b2f4ec20687eafeeee90d1dceccc8d","after":"27b8420790b0590364ab21a60ee126d80fe2b7d1","ref":"refs/heads/main","pushedAt":"2024-05-20T11:31:09.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Create High-Frequency User Access to SMB Network Shares.md","shortMessageHtmlLink":"Create High-Frequency User Access to SMB Network Shares.md"}},{"before":"cccf2623dd053ad996e96185b7b36ab9ff10fd57","after":"3303246ac2b2f4ec20687eafeeee90d1dceccc8d","ref":"refs/heads/main","pushedAt":"2024-05-20T11:30:30.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Create BABYWIPER Related Activity.md","shortMessageHtmlLink":"Create BABYWIPER Related Activity.md"}},{"before":"a3ca53b821fc448284edf552de1f4b713d47dba4","after":"cccf2623dd053ad996e96185b7b36ab9ff10fd57","ref":"refs/heads/main","pushedAt":"2024-05-20T11:29:25.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Add files via upload","shortMessageHtmlLink":"Add files via upload"}},{"before":"470ff39ce814a36873a0b7e4ea036aac4e78ab47","after":"a3ca53b821fc448284edf552de1f4b713d47dba4","ref":"refs/heads/main","pushedAt":"2024-05-20T11:28:28.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"H1dd3n00b","name":null,"path":"/H1dd3n00b","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/137111993?s=80&v=4"},"commit":{"message":"Create Base64 Encoded Impersonation Detected.md","shortMessageHtmlLink":"Create Base64 Encoded Impersonation Detected.md"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAElPXZ6gA","startCursor":null,"endCursor":null}},"title":"Activity · H1dd3n00b/KQL-Threat-Hunting"}