This app provides alerts built with splunk search macros to detect a wide variety of suspicious activity in Windows environment via Windows Sysmon and Event Logs. It is designed for 'blue-team' team members.