# Team Posts

- [Anton's Posts](/team-posts/antons-posts.md)
- [Hunt Fast: Splunk and tstats](/team-posts/antons-posts/splunktstats.md)
- [Hunting Malicious Macros](/team-posts/antons-posts/hunting-malicious-macros.md)
- [Get Azure Key Vault Data into Splunk](/team-posts/antons-posts/get-azure-key-vault-data-into-splunk.md)
- [Edit Your Sysmon Config in Style](/team-posts/antons-posts/edit-your-sysmon-config-in-style.md)
- [Wrangle Your PowerShell Transcript Logs with Apache Nifi](/team-posts/antons-posts/wrangle-your-powershell-transcript-logs.md)
- [(Very) Basic Elastic SIEM Set up](/team-posts/antons-posts/elastic-siem-set-up.md)
- [Moloch + Suricata + JA3](/team-posts/antons-posts/moloch-suricata-ja3.md)
- [Making Lateral Movement Difficult in an Active Directory Environment](/team-posts/antons-posts/making-lateral-movement-difficult-in.md)
- [Taking a Closer Look at PowerShell Download Cradles](/team-posts/antons-posts/taking-closer-look-at-powershell.md)
- [Visualize Windows Logs With Neo4j](/team-posts/antons-posts/visualize-windows-logs-with-neo4j.md)
- [Device Guard - Fixing VMWare Tools](/team-posts/antons-posts/device-guard-fixing-vmware-tools.md)
- [Offensive Security OSCE (CTP) Review](/team-posts/antons-posts/offensive-security-osce-ctp-review.md)
- [(Attempting) to Detect Responder with Sysmon](/team-posts/antons-posts/attempting-to-detect-responder-with.md)
- [Working with Sysmon](/team-posts/antons-posts/working-with-sysmon.md)
- [Setting Up Sysmon](/team-posts/antons-posts/setting-up-sysmon.md)
- [Lee's Posts](/team-posts/lees-posts.md)
- [Malicious AzureAD Application Registrations](/team-posts/lees-posts/malicious-azuread-app-registrations.md)