Collections Bundle – Notion Templates (IndigoINT)

Description:

The Threat Hunter’s Mini-Kit Bundle provides fast, lightweight Notion templates for threat hunters, SOC teams, and detection engineers who need structure without bureaucracy.

This bundle includes:

• 🧠 Tooling / Query Cheat Sheet — Pre-filled with real-world hunting queries mapped to MITRE and enterprise tools
• 📓 Hunt Logbook Template — Track active hunts, working hypotheses, and key findings in a repeatable format
• 🚩 Detection Gap Tracker — Identify gaps in detection coverage and link them to relevant tools or PIRs

Designed by experienced analysts, these templates help your team organize detection logic, avoid repetitive triage, and document threat hunting efforts that often go untracked.

🎯 What You Get:

• A ready-to-use Notion bundle for hunting, detection tracking, and tool organization
• 15+ real-world detection queries across Elastic, Splunk, Sigma, Sysmon, AWS, and more
• Structured hunt logging with fields for hypothesis, results, IOCs, and escalation notes
• A detection gap tracker to highlight missing coverage and link gaps to tools or PIRs
• Suggested views to filter by data source, MITRE tactic, tool type, or hunting priority
• Designed for individual analysts or teams—scalable and modular
• Seamless integration with other IndigoINT workspaces, including PIRs, threat profiles, and reporting

Built to align with the Collection, Analysis, and Detection Engineering phases of operational threat hunting programs.