| 2020-04-21 | Russ McRee | SpectX: Log Parser for DFIR |
| 2020-02-27 | Xavier Mertens | Offensive Tools Are For Blue Teams Too |
| 2020-01-21 | Russ McRee | DeepBlueCLI: Powershell Threat Hunting |
| 2019-11-10 | Jan Kopriva | Did the recent malicious BlueKeep campaign have any positive impact when it comes to patching? |
| 2019-11-08 | Xavier Mertens | Microsoft Apps Diverted from Their Main Use |
| 2019-11-05 | Rick Wanner | Bluekeep exploitation causing Bluekeep vulnerability scan to fail |
| 2019-10-06 | Russ McRee | visNetwork for Network Data |
| 2019-08-21 | Russ McRee | KAPE: Kroll Artifact Parser and Extractor |
| 2019-08-05 | Rick Wanner | Scanning for Bluekeep vulnerable RDP instances |
| 2019-05-22 | Johannes Ullrich | An Update on the Microsoft Windows RDP "Bluekeep" Vulnerability (CVE-2019-0708) [now with pcaps] |
| 2019-04-05 | Russ McRee | Beagle: Graph transforms for DFIR data & logs |
| 2019-02-05 | Rob VandenBrink | Mitigations against Mimikatz Style Attacks |
| 2018-10-17 | Russ McRee | RedHunt Linux - Adversary Emulation, Threat Hunting & Intelligence |
| 2018-06-16 | Russ McRee | Anomaly Detection & Threat Hunting with Anomalize |
| 2017-07-01 | Rick Wanner | Using nmap to scan for MS17-010 (CVE-2017-0143 EternalBlue) |
| 2010-02-11 | Johannes Ullrich | MS10-015 may cause Windows XP to blue screen |
