Skip to content

Security Scriptographer — PowerShell & Threat Hunting

Through Security Scriptographer, I transform complex security concepts into practical scripts and tutorials. Proficient in PowerShell, Python and various security frameworks, I'm here to help others enhance their security toolkit. Simple code, serious security. 🛡️

  • Home
  • Start Here
  • About me

Building a PowerShell Security Audit Pipeline

June 27, 2026 0 Comments 10 min read
Building a PowerShell Security Audit Pipeline

A first PowerShell security audit script is the single most valuable thing a new Windows admin can build — but a script that runs...

Read more →

Automation PowerShell Scripting Sysadmin Windows Security

PowerShell Event Log Management for Windows Security

June 27, 2026 0 Comments 10 min read
PowerShell Event Log Management for Windows Security

PowerShell event log management has two halves that are usually written about separately and shouldn't be: querying the logs ...

Read more →

Incident Response PowerShell Security Monitoring Sysadmin Windows Security

PowerShell Threat Hunting: Windows Endpoint Triage Guide

June 27, 2026 0 Comments 10 min read
PowerShell Threat Hunting: Windows Endpoint Triage Guide

PowerShell threat hunting on a Windows endpoint sits between two extremes: the built-in Get-Process tells you almost nothing use...

Read more →

Incident Response PowerShell Sysadmin Threat Hunting Windows Security

KQL Threat Hunting in Microsoft Defender: Full Guide

June 27, 2026 0 Comments 10 min read
KQL Threat Hunting in Microsoft Defender: Full Guide

Most KQL tutorials hand you a pile of operators and leave you to work out how they fit together. This guide does the opposite. It wa...

Read more →

Detection Engineering KQL Microsoft 365 Security Microsoft Defender XDR Threat Hunting

Deploying Security Baselines in Microsoft Intune

June 24, 2026 0 Comments 10 min read
Deploying Security Baselines in Microsoft Intune

Hardening a Windows device from scratch means deciding on hundreds of individual settings, most of which you will get slightly wrong...

Read more →

Endpoint Security Microsoft 365 Security Microsoft Intune Security Baselines Sysadmin Windows Security
← Newer Posts Older Posts → Home
Subscribe to: Posts (Atom)

Search

most popular blogs

From Logs to Threats: SIEM Correlation Rules for Real Attacks

Image
Read more

Managing Windows LAPS with Microsoft Intune

Image
Read more

Important References

  • MITRE ATT&CK
  • MITRE D3FEND
  • PowerShell Documentation

Categories

  • Active Directory
  • ASR Rules
  • Authentication
  • Automation
  • BitLocker
  • Conditional Access
  • Defense Evasion
  • Detection Engineering
  • Device Compliance
  • Disk Encryption
  • Endpoint Security
  • Entra ID
  • EVTX
  • FIDO2
  • Forensics
  • Hybrid Identity
  • Identity Security
  • Incident Response
  • Intune
  • IOC
  • KQL
  • MFA
  • Microsoft 365 Security
  • Microsoft Defender for Endpoint
  • Microsoft Defender XDR
  • Microsoft Graph
  • Microsoft Intune
  • Microsoft Sentinel
  • Migration
  • MITRE ATT&CK
  • MITRE D3FEND
  • Passwordless
  • Persistence
  • Phishing Simulation
  • PowerShell
  • Privileged Identity Management
  • Project Online
  • Python
  • Scripting
  • Security Baselines
  • Security Monitoring
  • SharePoint
  • SIEM
  • Sigma
  • Sysadmin
  • Sysmon
  • Threat Hunting
  • Tutorials
  • Windows
  • Windows LAPS
  • Windows Security
  • YARA

Blog Archive

  • July 2026 (3)
  • June 2026 (21)
  • May 2026 (8)
  • July 2025 (3)
  • January 2025 (5)

Report Abuse

Navigation

  • Home
  • Start Here
  • About
  • Search
  • Terms and Conditions
  • Disclaimer
  • Privacy Policy
  • Impressum
  • Manage privacy settings

Categories

  • Security
  • Scripting
  • Tutorials

Guides

  • Start Here
  • MITRE ATT&CK Fundamentals
  • MITRE D3FEND Fundamentals

Copyright © Security Scriptographer — PowerShell & Threat Hunting

Design by Compete Themes | Blogger Theme by NewBloggerThemes.com