{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":690383249,"defaultBranch":"main","name":"DefenderATPQueries","ownerLogin":"0xAnalyst","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2023-09-12T05:06:44.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/893075?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1705916127.0","currentOid":""},"activityList":{"items":[{"before":"7cbd89e84de20e5d9b917eb0f2b63ba737ff26cf","after":"0370e0ea2055b9433c542192cd1a07185a12282e","ref":"refs/heads/main","pushedAt":"2024-09-09T10:57:29.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create Devtunnelcodetunneling.md","shortMessageHtmlLink":"Create Devtunnelcodetunneling.md"}},{"before":"c764e9e3c0878055ce5b3513f7d3520bfe66192b","after":"7cbd89e84de20e5d9b917eb0f2b63ba737ff26cf","ref":"refs/heads/main","pushedAt":"2024-09-09T10:31:48.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create DevtunnelRegistry.md","shortMessageHtmlLink":"Create DevtunnelRegistry.md"}},{"before":"a2e6ae75bebc95833e1f5243e163213e38b8a26e","after":"c764e9e3c0878055ce5b3513f7d3520bfe66192b","ref":"refs/heads/main","pushedAt":"2024-09-09T10:03:09.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create DevTunnelFileEvents.md","shortMessageHtmlLink":"Create DevTunnelFileEvents.md"}},{"before":"33c51d020980f429de3a6bfed31da5bd8fb93945","after":"a2e6ae75bebc95833e1f5243e163213e38b8a26e","ref":"refs/heads/main","pushedAt":"2024-09-09T08:44:54.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create DevTunnelnetworkdetection.md","shortMessageHtmlLink":"Create DevTunnelnetworkdetection.md"}},{"before":"165aa39e81c06a1e49127b00e6603af3b14b7c42","after":"33c51d020980f429de3a6bfed31da5bd8fb93945","ref":"refs/heads/main","pushedAt":"2024-08-27T13:35:24.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create GetsystemelevationCSmetasploit.md","shortMessageHtmlLink":"Create GetsystemelevationCSmetasploit.md"}},{"before":"ccd97893e06d0ac503f8bcc209b9cd51f8cb7400","after":"165aa39e81c06a1e49127b00e6603af3b14b7c42","ref":"refs/heads/main","pushedAt":"2024-08-26T08:47:28.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Rename AdfindDetection.KQL to AdfindDetection.md","shortMessageHtmlLink":"Rename AdfindDetection.KQL to AdfindDetection.md"}},{"before":"2127e49eea082124559d7999169263b05be22799","after":"ccd97893e06d0ac503f8bcc209b9cd51f8cb7400","ref":"refs/heads/main","pushedAt":"2024-08-26T08:47:13.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update AdfindDetection.KQL","shortMessageHtmlLink":"Update AdfindDetection.KQL"}},{"before":"dde426dd093516cd6b05a446d286b46378d1606c","after":"2127e49eea082124559d7999169263b05be22799","ref":"refs/heads/main","pushedAt":"2024-08-26T08:46:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create AdfindDetection.KQL","shortMessageHtmlLink":"Create AdfindDetection.KQL"}},{"before":"9764f85ecbba150ff5523950f1a54ceca391e9b3","after":"dde426dd093516cd6b05a446d286b46378d1606c","ref":"refs/heads/main","pushedAt":"2024-08-25T12:08:57.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create Peaklightinfection.md","shortMessageHtmlLink":"Create Peaklightinfection.md"}},{"before":"f24b126630de8e44d540a2e6e681ac0283a11ce2","after":"9764f85ecbba150ff5523950f1a54ceca391e9b3","ref":"refs/heads/main","pushedAt":"2024-08-14T12:25:27.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update MFASuspicious.md","shortMessageHtmlLink":"Update MFASuspicious.md"}},{"before":"071b8d8c4b1479f6d90ed6f00e27236f1758add5","after":"f24b126630de8e44d540a2e6e681ac0283a11ce2","ref":"refs/heads/main","pushedAt":"2024-08-14T12:20:56.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update MFASuspicious.md","shortMessageHtmlLink":"Update MFASuspicious.md"}},{"before":"1d6b063f062509d3d867727e1352166de9911dc7","after":"071b8d8c4b1479f6d90ed6f00e27236f1758add5","ref":"refs/heads/main","pushedAt":"2024-08-14T09:55:00.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update MFASuspicious.md","shortMessageHtmlLink":"Update MFASuspicious.md"}},{"before":"6ec0fb62d66e42fa0aad2035dfba682404d04bf9","after":"1d6b063f062509d3d867727e1352166de9911dc7","ref":"refs/heads/main","pushedAt":"2024-08-14T09:53:42.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update MFASuspicious.md","shortMessageHtmlLink":"Update MFASuspicious.md"}},{"before":"416cb41e775b1c305bdb362d3dd8b08458798b59","after":"6ec0fb62d66e42fa0aad2035dfba682404d04bf9","ref":"refs/heads/main","pushedAt":"2024-08-14T09:50:45.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create MFASuspicious.md","shortMessageHtmlLink":"Create MFASuspicious.md"}},{"before":"57b7d05401668c5d7c0781d27c7b008e4d337ed5","after":"416cb41e775b1c305bdb362d3dd8b08458798b59","ref":"refs/heads/main","pushedAt":"2024-08-06T14:47:23.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update LatrodectusFileCreation.md","shortMessageHtmlLink":"Update LatrodectusFileCreation.md"}},{"before":"99fb2c81b2c8dfb30168daca91f74a85d28b1e86","after":"57b7d05401668c5d7c0781d27c7b008e4d337ed5","ref":"refs/heads/main","pushedAt":"2024-08-06T14:46:35.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create LatrodectusFileCreation.md","shortMessageHtmlLink":"Create LatrodectusFileCreation.md"}},{"before":"dac7c5a539379e81e68ab194cde7a83ad026e639","after":"99fb2c81b2c8dfb30168daca91f74a85d28b1e86","ref":"refs/heads/main","pushedAt":"2024-07-25T07:23:29.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Rename RegSamDumping.KQL to RegSamDumping.kql","shortMessageHtmlLink":"Rename RegSamDumping.KQL to RegSamDumping.kql"}},{"before":"1c48af18c36c84faf43eaaef3fa1464314d0bc8d","after":"dac7c5a539379e81e68ab194cde7a83ad026e639","ref":"refs/heads/main","pushedAt":"2024-07-21T19:13:05.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update Readme.md","shortMessageHtmlLink":"Update Readme.md"}},{"before":"b053aa2130d3172d6715246f06f904b60f81660f","after":"1c48af18c36c84faf43eaaef3fa1464314d0bc8d","ref":"refs/heads/main","pushedAt":"2024-07-21T11:43:34.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create SetThreadContextRemoteApiCallQuery.md","shortMessageHtmlLink":"Create SetThreadContextRemoteApiCallQuery.md"}},{"before":"848adf55a752b920350c90f1be4131dcdee6e3cc","after":"b053aa2130d3172d6715246f06f904b60f81660f","ref":"refs/heads/main","pushedAt":"2024-07-21T11:28:47.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update Readme.md","shortMessageHtmlLink":"Update Readme.md"}},{"before":"ebc56cabf8dde41c6c3611173bb7d7ec92cfbcf9","after":"848adf55a752b920350c90f1be4131dcdee6e3cc","ref":"refs/heads/main","pushedAt":"2024-07-21T11:28:30.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update Readme.md","shortMessageHtmlLink":"Update Readme.md"}},{"before":"b7031877f58c767663bc9abd5be11b04d00cb5c8","after":"ebc56cabf8dde41c6c3611173bb7d7ec92cfbcf9","ref":"refs/heads/main","pushedAt":"2024-07-21T11:28:04.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update Readme.md","shortMessageHtmlLink":"Update Readme.md"}},{"before":"dc2f00f26be33dd50794354dbd441c0e6f7b9904","after":"b7031877f58c767663bc9abd5be11b04d00cb5c8","ref":"refs/heads/main","pushedAt":"2024-07-21T11:26:00.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create GetAsyncKeyStateApiCallQuery.md","shortMessageHtmlLink":"Create GetAsyncKeyStateApiCallQuery.md"}},{"before":"79b930ea2534e6e9aea99c409cfae50842fc7b02","after":"dc2f00f26be33dd50794354dbd441c0e6f7b9904","ref":"refs/heads/main","pushedAt":"2024-07-21T07:16:24.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create NtMapViewOfSectionDetectionRule.md","shortMessageHtmlLink":"Create NtMapViewOfSectionDetectionRule.md"}},{"before":"7b453c2a800beacba75316aa205d931b8cc7767b","after":"79b930ea2534e6e9aea99c409cfae50842fc7b02","ref":"refs/heads/main","pushedAt":"2024-07-21T06:56:56.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create QueueUserApcRemoteApiCallDetectionRule.md","shortMessageHtmlLink":"Create QueueUserApcRemoteApiCallDetectionRule.md"}},{"before":"15113fe5d79475afb6a8354dcd6b2feaeb466fe5","after":"7b453c2a800beacba75316aa205d931b8cc7767b","ref":"refs/heads/main","pushedAt":"2024-07-21T06:41:52.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create Readme.md","shortMessageHtmlLink":"Create Readme.md"}},{"before":"13a83abb472456f01e90d84596d8cf487ebf92de","after":"15113fe5d79475afb6a8354dcd6b2feaeb466fe5","ref":"refs/heads/main","pushedAt":"2024-07-18T09:57:01.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update Readme.md","shortMessageHtmlLink":"Update Readme.md"}},{"before":"098ceb2f490bb601c4d6fbe3b9955cf9953383d1","after":"13a83abb472456f01e90d84596d8cf487ebf92de","ref":"refs/heads/main","pushedAt":"2024-07-18T09:47:55.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update Readme.md","shortMessageHtmlLink":"Update Readme.md"}},{"before":"1afd37ae2c120d410020228f6c0b72468a8b79d2","after":"098ceb2f490bb601c4d6fbe3b9955cf9953383d1","ref":"refs/heads/main","pushedAt":"2024-07-18T09:28:11.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Create AsrWebShellOnServerAuditedQuery.md","shortMessageHtmlLink":"Create AsrWebShellOnServerAuditedQuery.md"}},{"before":"951c8800cb8232b4659940798fc5ec75179d272f","after":"1afd37ae2c120d410020228f6c0b72468a8b79d2","ref":"refs/heads/main","pushedAt":"2024-07-17T10:43:17.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"0xAnalyst","name":"Ali Hussein","path":"/0xAnalyst","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/893075?s=80&v=4"},"commit":{"message":"Update rnpkeysDllHijack.md","shortMessageHtmlLink":"Update rnpkeysDllHijack.md"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEsMglNAA","startCursor":null,"endCursor":null}},"title":"Activity · 0xAnalyst/DefenderATPQueries"}