If you're using Huntress Managed SIEM, you know the power of good queries — and the frustration of scattered, undocumented detection rules. I built the Huntress SIEM Library to solve that problem.

This is a community-focused repository for sharing, version-controlling, and collaborating on Huntress SIEM queries using ES|QL (Elastic Stack Query Language).

Welcome to my little corner of the internet! If you're here, you probably care about cybersecurity, automation, or DevOps — or you're just really lost (in which case, welcome anyway).

This blog is where I share the things I've learned while trying to make technology work better, faster, and more securely.