Projects
Selected professional and personal projects.
MacOS Unified Logging: Sysmon-Style Security Telemetry to Splunk
Collecting macOS security telemetry from the Apple unified logging system using logd predicates and Splunk Universal Forwarder, with private data enabled via MDM configuration profiles. Continue reading MacOS Unified Logging: Sysmon-Style Security Telemetry to Splunk
Splunk SOAR URL Reputation Playbook
Splunk SOAR playbook that automates URL reputation investigations with modular enrichment, analyst guidance, and case updates. Continue reading Splunk SOAR URL Reputation Playbook
