🎯 LOTL HUNTER PLAYBOOK - QUICK START

Welcome to the LOTL Hunter Playbook! This package contains everything you need to build your own living-off-the-land detection system for small to medium networks.

📁 PACKAGE STRUCTURE
====================

1. DETECTION_ENGINE/     - PowerShell detection scripts
   - LOT-Squatch.ps1     - Main detection engine
   - Detection.ps1       - Detection rules module
   - Quick-Start.ps1     - Beginner-friendly script

2. DASHBOARD/           - Python/Flask web dashboard
   - app.py             - Main dashboard application
   - requirements.txt   - Python dependencies
   - templates/         - HTML templates

3. GUIDES/              - Step-by-step documentation
   - 01_Getting_Started.md
   - 02_Deployment_Checklist.md
   - 03_Investigation_Playbook.md

4. SAMPLES/             - Test data and examples
   - sample-detection-report.html
   - test-environment.ps1

5. SUPPORT/             - Support and licensing
   - README.txt         - Support information
   - LICENSE.txt        - License agreement

📚 KEY DOCUMENTS
================

- LOTL_Hunter_Playbook.html   - Complete playbook (HTML)
- LOTL_Hunter_Playbook.txt    - Complete playbook (text)
- LOTL_HUNTER_PLAYBOOK.md     - Original markdown

🚀 15-MINUTE QUICK START
========================

1. Open PowerShell as Administrator
2. Navigate to Detection_Engine folder
3. Run: .\Quick-Start.ps1
4. Review the generated HTML report
5. Open LOTL_Hunter_Playbook.html for next steps

🔐 SECURITY FIRST
=================

- Test on a non-production system first
- Review all scripts before running
- Run as Administrator for full detection
- Schedule scans during off-hours

📞 SUPPORT
==========

Email: support@cyborama.com
Documentation: Included guides
Community: GitHub discussions

Updates: Monthly security rule updates via GitHub

Cyborama, LLC - "Threat Intelligence with Teeth™"
==================================================