Commit Graph

Select branches

Hide Pull Requests

bun

master

microblog

renovate/hexo-8.x

site

Mono Color

• 112c34b9ac Merge branch 'renovate/hexo-8.x' into 'master' renovate 2025-11-05 10:05:19 +0000
• 2d35a32091
  micropost: 10 October 2025 microblog Ming Di Leom 2025-10-10 09:08:29 +0000
• 5c4e675899
  feat(threat-hunting): Secondary Logon service master Ming Di Leom 2025-10-04 22:26:50 +0000
• d566c42fa7
  chore(rmm-monitor): PQE/ITarian Ming Di Leom 2025-09-21 11:07:56 +0000
• a7ec0849fc
  feat(threat-hunting): Suspicious command involving Public folder Ming Di Leom 2025-09-21 10:59:51 +0000
• 2e6082b957 chore(deps): update dependency hexo to v8 renovate/hexo-8.x renovate 2025-09-21 04:02:28 +0000
• 24f65e8425
  page(restricted-admin): registry change detection Ming Di Leom 2025-08-24 10:54:47 +0000
• c117b84a68
  feat(threat-hunting): User Account Control (UAC) policy change Ming Di Leom 2025-08-24 10:50:38 +0000
• dcda1a17b0
  chore(deps): test hexo-yam native zstd support Ming Di Leom 2025-08-17 08:45:34 +0000
• 4fac7412e1
  chore(deps): test hexo-yam native zstd support Ming Di Leom 2025-08-17 08:44:45 +0000
• 05649a8553
  micropost: 10 August 2025 Ming Di Leom 2025-08-10 07:00:38 +0000
• 0a2deee8cb
  feat(threat-hunting): Root certificate installation Ming Di Leom 2025-08-09 04:32:18 +0000
• 830aea5f11
  feat(ad-db-dump): detect ntds.dit dump using backup utility Ming Di Leom 2025-08-09 04:27:15 +0000
• a93b2fb5b5
  feat(threat-hunting): AD integrated DNS zone export Ming Di Leom 2025-08-09 04:23:26 +0000
• a1a8f6c44b
  feat(threat-hunting): Veeam credential extraction Ming Di Leom 2025-08-06 11:31:55 +0000
• 665846fa33
  chore(rmm-monitor): AnyViewer/JumpConnect/TinyPilot/OptiTune Ming Di Leom 2025-08-03 08:14:31 +0000
• e284914748
  page(threat-hunting): Windows Recovery Environment disabled Ming Di Leom 2025-08-03 08:04:17 +0000
• 3511c59121
  refactor(unusual-schtasks): combine alerts Ming Di Leom 2025-08-03 07:59:32 +0000
• 7900d8410b
  feat: show published/updated date on pages Ming Di Leom 2025-07-27 07:52:33 +0000
• 798c54ae4d
  micropost: 27 July 2025 Ming Di Leom 2025-07-27 06:39:01 +0000
• 4922492c95
  refactor(threat-hunting): separate headings into pages Ming Di Leom 2025-07-27 06:15:45 +0000
• a4068a880a
  chore(lolbin-detection): rawcopy.exe Ming Di Leom 2025-07-27 02:21:54 +0000
• 4d797debcc
  micropost: 18 July 2025 Ming Di Leom 2025-07-18 12:12:08 +0000
• e310dd61d1
  fix(defender-incident): combine accountName fields Ming Di Leom 2025-07-11 10:18:05 +0000
• 3683ae6d3c
  micropost: 5 July 2025 Ming Di Leom 2025-07-05 03:23:24 +0000
• 643b5ef5c3
  page(about): update projects description Ming Di Leom 2025-06-30 10:52:54 +0000
• c336c490de
  feat(threat-hunting): DonPAPI detection Ming Di Leom 2025-06-30 10:19:05 +0000
• 1901e5c573
  refactor(threat-hunting): combine LoLBin detections Ming Di Leom 2025-06-30 10:15:44 +0000
• e21350c029
  chore(rmm-monitor): Ekran/Syteca & ClassroomSpy Ming Di Leom 2025-06-30 09:06:55 +0000
• ddec67b836
  feat(threat-hunting): NodeJS spawning cmd.exe Ming Di Leom 2025-06-30 09:02:04 +0000
• 1c48ed888a
  chore(copyright): 2025 Ming Di Leom 2025-06-30 08:59:14 +0000
• ed06d65ce4
  feat(threat-hunting): FileFix detection Ming Di Leom 2025-06-30 08:55:47 +0000
• 1df78c65c5
  feat(threat-hunting): Excessive AWS WAF Blocked Events Ming Di Leom 2025-06-30 08:52:58 +0000
• 1bde8ee4c6
  feat(threat-hunting): chisel proxy detection Ming Di Leom 2025-06-30 08:44:57 +0000
• 61e552b0ea
  chore(theme): link to /threat-hunting/ Ming Di Leom 2025-06-30 08:42:58 +0000
• 57ca66d09d
  page(threat-hunting): domain admins report Ming Di Leom 2025-06-09 06:52:25 +0000
• 4ac82f1ed1
  fix(defender-incident): combine filePath, url, processCommandLine into a field Ming Di Leom 2025-06-01 12:06:18 +0000
• 6a39f54934
  page(threat-hunting): Account Discovery Using DIR, WHOAMI, and NET Ming Di Leom 2025-06-01 12:02:01 +0000
• 429092e81a
  page(threat-hunting): Windows Sandbox execution Ming Di Leom 2025-06-01 11:56:27 +0000
• 93880a8100
  page(threat-hunting): Windows JScript execution Ming Di Leom 2025-06-01 11:54:08 +0000
• 7913075926
  page(threat-hunting): Cipher.exe execution Ming Di Leom 2025-06-01 11:50:45 +0000
• d824585ced
  page(threat-hunting): Disable Microsoft Defender (Registry) Ming Di Leom 2025-05-20 09:01:09 +0000
• 16e9e6ac56
  fix(clickfix-detect): update fields Ming Di Leom 2025-05-20 08:45:34 +0000
• 80239ea808
  post(openwrt-nts): persist config across reboots Ming Di Leom 2025-05-08 09:45:39 +0000
• 8fc44aae9d
  fix(unusual-ua): include firefox Ming Di Leom 2025-05-04 01:24:30 +0000
• 872144936c
  page(threat-hunting): Unusual User Agent Ming Di Leom 2025-05-04 01:22:44 +0000
• daedc05d2f
  page(about): SSH access is now restricted to Tailscale Ming Di Leom 2025-04-09 10:36:50 +0000
• 7ee64d3b4a
  page(about): remove npm and codeberg badges Ming Di Leom 2025-04-09 10:19:56 +0000
• 8f13865138
  page(threat-hunting): Clear-text password search Ming Di Leom 2025-04-09 10:18:07 +0000
• 7bbc0ec694
  post(centos-dnf-auto): clarify sentence Ming Di Leom 2025-04-08 09:01:08 +0000
• 533e1099b5
  chore(rmm-monitor): UltraViewer Ming Di Leom 2025-04-08 08:24:55 +0000
• d037a782fd
  page(threat-hunting): ShareName suffix Ming Di Leom 2025-04-08 08:24:07 +0000
• 56605626a2
  page(about): add tailscale to architecture site Ming Di Leom 2025-04-07 10:10:12 +0000
• b330435a1f
  build: clean up artifact prior to build Ming Di Leom 2025-04-07 08:30:25 +0000
• 0866cd3890
  docs: update mirror order according to update frequency Ming Di Leom 2025-04-06 12:22:07 +0000
• 4803ba6ff4
  page(threat-hunting): update InnoDownloadPlugin description Ming Di Leom 2025-04-06 12:06:57 +0000
• 978e8c6ae6
  page(threat-hunting): file hiding using attrib.exe Ming Di Leom 2025-04-06 12:04:48 +0000
• 751e9e7c66
  page(threat-hunting): powershell auto-start Ming Di Leom 2025-04-06 12:02:04 +0000
• cd2a742df9
  page(threat-hunting): CobaltStrike detection through network share discovery Ming Di Leom 2025-04-06 11:49:47 +0000
• b7abc47a5c
  page(threat-hunting): New Network Share detected Ming Di Leom 2025-04-06 11:43:44 +0000
• fb69f36eb2
  page(threat-hunting): tailscale detection Ming Di Leom 2025-04-06 11:02:51 +0000
• 4dd73a7f77
  post: Running Tailscale in GitLab CI/CD with Alpine container Ming Di Leom 2025-04-06 08:42:41 +0000
• 3de900c5d3
  ci(gl): start tailscaled as ephemeral node Ming Di Leom 2025-04-05 07:24:27 +0000
• 205d3fd854
  chore(license): update year Ming Di Leom 2025-04-04 22:07:59 +0000
• 68175f2709
  micropost(cmc): 3.37.1 Ming Di Leom 2025-04-04 07:44:43 +0000
• 5cebe7c749
  micropost: 3 Apr 2025 Ming Di Leom 2025-04-03 10:01:59 +0000
• 3f88d3dc20
  page(threat-hunting): InnoDownloadPlugin user-agent observed Ming Di Leom 2025-04-01 09:26:50 +0000
• e731f85296
  ci(gl): start tailscaled without openrc Ming Di Leom 2025-03-30 09:32:21 +0000
• 3fa8c33ea5
  page(threat-hunting): ClickFix detection Ming Di Leom 2025-03-29 07:35:17 +0000
• db84c03325
  chore(rmm-monitor): TightVNC Ming Di Leom 2025-03-29 06:58:46 +0000
• 443c7ecd18
  ci(gl): deploy via tailscale Ming Di Leom 2025-03-28 10:22:53 +0000
• 0f02802ebd
  ci(gl): base64-decode variables Ming Di Leom 2025-03-17 08:02:57 +0000
• f36554abe8
  feat(threat-hunting): Defender Incident Ming Di Leom 2025-03-13 10:08:59 +0000
• f2b06016c1
  feat(threat-hunting): Regasm.exe execution Ming Di Leom 2025-03-08 07:23:15 +0000
• 556ee14d9f
  feat(threat-hunting): Excessive RDP Ming Di Leom 2025-02-26 05:47:41 +0000
• 4e572f0bfb
  style(theme): move gitlab link to footer Ming Di Leom 2025-01-18 10:18:13 +0000
• ec7268cf85
  chore(threat-hunting): updated date Ming Di Leom 2025-02-16 10:18:04 +0000
• b5a08380d4
  feat(threat-hunting): WinrsHost.exe execution Ming Di Leom 2025-02-16 10:17:08 +0000
• 7da3ce2538
  feat(threat-hunting): CDB.exe execution Ming Di Leom 2025-02-16 10:15:05 +0000
• 976d1457d1
  chore(rmm-monitor): RealVNC & Dameware Ming Di Leom 2025-02-16 10:04:07 +0000
• d4496770e7
  micropost: 16 Feb 2025 Ming Di Leom 2025-02-16 10:02:20 +0000
• 6d7ddc7906
  micropost: 8 Feb 2025 Ming Di Leom 2025-02-08 10:11:22 +0000
• 9ea18b1495
  page(threat-hunting): cmd without extension Ming Di Leom 2025-02-08 01:07:45 +0000
• 9c02132f68
  page(threat-hunting): "Rundll32 Scheduled Task" Ming Di Leom 2025-02-03 06:46:56 +0000
• afbf7f6428
  page(threat-hunting): SimpleHelp,Netop,Impero Ming Di Leom 2025-02-03 06:31:29 +0000
• 42ba8a01de
  page(threat-hunting): rename snow_cmdb_lookup to cmdb_ci_list_lookup Ming Di Leom 2025-02-03 06:24:49 +0000
• 7e161ee130
  post(atlassian-jira-sso): clarify agent is a paid user Ming Di Leom 2025-02-02 21:33:40 +0000
• 5ad8199507
  post: Atlassian and Jira portal-only SSO Ming Di Leom 2025-02-02 00:11:17 +0000
• 7b1b1ce7cb
  micropost: 1 Feb 2025 Ming Di Leom 2025-02-01 06:14:15 +0000
• ea7d24b3c0
  page(threat-hunting): move status monitor to gitlab Ming Di Leom 2025-02-01 03:35:43 +0000
• 16b0ed9e69
  chore(robots): exclude non-pages Ming Di Leom 2025-01-28 09:24:07 +0000
• d25e9662ab
  page(threat-hunting): "Unusual printui.exe path" Ming Di Leom 2025-01-28 08:59:40 +0000
• 6c2d590207
  post(caddy-nixos-3): intercept http 302 on gitlab pages Ming Di Leom 2025-01-26 06:37:44 +0000
• b9c3b803e8 Merge branch 'renovate/postcss-normalize-13.x' into 'master' Ming Di Leom 2025-01-22 08:35:52 +0000
• d61f6c46e4 Merge branch 'renovate/postcss-normalize-13.x' into 'master' renovate 2025-01-21 10:46:41 +0000
• 3b8006dfd4
  ci(gl): run build & test jobs in MR Ming Di Leom 2025-01-21 10:45:32 +0000
• 86ece47eca Merge branch 'renovate/node-22.x' into 'master' Ming Di Leom 2025-01-21 10:14:35 +0000
• 827c7abff9 Merge branch 'renovate/node-22.x' into 'master' renovate 2025-01-21 10:11:21 +0000
• df5a8347b6
  micropost: 21 Jan 2025 Ming Di Leom 2025-01-21 10:09:01 +0000
• ec24fc8cb1
  post(caddy-nixos-3): cloudflare images for image resizing Ming Di Leom 2025-01-19 07:29:51 +0000