Elmer Phillips | Security Analyst

Blue Team Operations | SIEM | EDR | Managed Detection & Response

/home/elmer@mdr:~

Read the Blog Explore Tools

Professional Summary

Security Analyst with 3+ years of MDR experience.

Blue Team Operations & Defense
SIEM & EDR Platform Mastery
Detection Engineering & Threat Hunting
Pragmatic Incident Response

Featured Blog Posts

Oct 22, 2025 • 3 min read • Intermediate

Building a Security-Focused Homelab: Lessons from Week One

Building a Security-Focused Homelab: Lessons from Week One Starting my homelab journey has been more rewarding than I expected. After …

HomelabSIEM DYI

Oct 21, 2025 • 2 min read • Intermediate

Active Node.js Malware Campaign Targeting Manual Reader Applications

We’re seeing a significant uptick in a malware campaign that’s affecting multiple customers. This one’s worth knowing …

Threat HuntingIncident Response MalwareNode.jsEDR

Oct 20, 2025 • 2 min read • Intermediate

Building Effective Threat Hunting Queries

Effective threat hunting queries help you find what automated detections miss. Here’s my approach to building them. Start with a …

Threat HuntingSIEM Queries SplunkSentinelKQL

Featured Tools

SentinelOne Power Query UI

EDR

User interface for SentinelOne query operations

★ – ⎇ – – Updated –

View on GitHub

Argus

OSINT

OSINT aggregator tool for threat intelligence gathering

★ – ⎇ – – Updated –

View on GitHub

Core Competencies

Blue Team Operations

Defensive playbooks
SOC workflows

SIEM Platforms

Splunk, Microsoft Sentinel, Chronicle

EDR Solutions

SentinelOne, CrowdStrike, Defender

Threat Intel & Hunting

OSINT enrichment, hunt hypotheses

Detection Eng. & IR

Rule tuning, incident response