OnDemand

15 bookmarks

Custom sorting

olafhartong/sysmon-modular: A repository of sysmon configuration modules

olafhartong/sysmon-modular: A repository of sysmon configuration modules

·github.com·Mar 26, 2025

olafhartong/sysmon-modular: A repository of sysmon configuration modules

GitHub - SwiftOnSecurity/sysmon-config: Sysmon configuration file template with default high-quality event tracing

GitHub - SwiftOnSecurity/sysmon-config: Sysmon configuration file template with default high-quality event tracing

·github.com·Mar 26, 2025

GitHub - SwiftOnSecurity/sysmon-config: Sysmon configuration file template with default high-quality event tracing

Greater Visibility Through PowerShell Logging | Mandiant

Greater Visibility Through PowerShell Logging | Mandiant

·fireeye.com·Mar 26, 2025

Greater Visibility Through PowerShell Logging | Mandiant

CyberChef

CyberChef

·gchq.github.io·Mar 26, 2025

The Key to Identify PsExec

The Key to Identify PsExec

·aboutdfir.com·Mar 26, 2025

The Key to Identify PsExec

Finding and Decoding Malicious Powershell Scripts - SANS DFIR Summit 2018

Finding and Decoding Malicious Powershell Scripts - SANS DFIR Summit 2018

·youtube.com·Mar 26, 2025

Finding and Decoding Malicious Powershell Scripts - SANS DFIR Summit 2018

Windows RDP-Related Event Logs: Identification, Tracking, and Investigation | Ponder The Bits

Windows RDP-Related Event Logs: Identification, Tracking, and Investigation | Ponder The Bits

·ponderthebits.com·Mar 26, 2025

Windows RDP-Related Event Logs: Identification, Tracking, and Investigation | Ponder The Bits

Windows Event ID 1029 Hashes

Windows Event ID 1029 Hashes

·nullsec.us·Mar 26, 2025

Windows Event ID 1029 Hashes

'Applied Incident Response Scripts

'Applied Incident Response Scripts

·appliedincidentresponse.com·Mar 26, 2025

'Applied Incident Response Scripts

Appendix L - Events to Monitor

Appendix L - Events to Monitor

·learn.microsoft.com·Mar 26, 2025

Appendix L - Events to Monitor

Windows Security Log Encyclopedia

Windows Security Log Encyclopedia

·ultimatewindowssecurity.com·Mar 26, 2025

Windows Security Log Encyclopedia

Windows event log analyst reference

Windows event log analyst reference

·appliedincidentresponse.com·Mar 26, 2025

Windows event log analyst reference

20170612ac ir research en

20170612ac ir research en

·jpcert.or.jp·Mar 26, 2025

20170612ac ir research en

Event Log

Event Log

·docs.microsoft.com·Mar 26, 2025

AmCache Investigation - SANS Digital Forensics & Incident Response Summit 2019

AmCache Investigation - SANS Digital Forensics & Incident Response Summit 2019

·youtube.com·Mar 26, 2025

AmCache Investigation - SANS Digital Forensics & Incident Response Summit 2019