Home How To Leveraging Windows Event Logs in Examinations

How To

Leveraging Windows Event Logs in Examinations

Posted on January 28, 2017

1,235

Black Bag Training Team continues Windows Forensic Essentials Blog Series with a post about forensic examination of Windows Event Logs. They explain what event logs are, how to parse it with their tool – BlackLight®, discuss log-on events and changing the date and time.

Related Articles
More In How To

Spotting the Signs of Lateral Movement

Derek King has published another post as part of his “Hunting with Splunk: The Basic…

16 hours ago
27 second read
How to Deploy Cuckoo Sandbox

Marc Rivero López presented a how-to guide that will help you to deploy Cuckoo Sandbox …

2 days ago
14 second read
DFIR SQL Query Repository

Alexis Brignoni has started a collection of SQL query templates for digital forensics use,…

3 days ago
18 second read

Load More Related Articles

How to Deploy Cuckoo Sandbox

Marc Rivero López presented a how-to guide that will help you to deploy Cuckoo Sandbox …

2 days ago
14 second read
How to Disassemble a Word Document with Embedded Macros

Here is a post by Paul Cimino, in which he goes through the steps to create a macro-embedd…

July 24, 2018
20 second read
Linux Binary Poisoning Detection

In this post guys from Sandfly Security describe the process of detection poisoned Linux b…

June 14, 2018
22 second read

Load More In How To

Click To Comment

Leveraging Windows Event Logs in Examinations

Spotting the Signs of Lateral Movement

How to Deploy Cuckoo Sandbox

DFIR SQL Query Repository

How to Deploy Cuckoo Sandbox

How to Disassemble a Word Document with Embedded Macros

Linux Binary Poisoning Detection

Leave a Reply Cancel reply

About Us

Popular Posts

Windows 10 Forensics

Android Forensics Using Some Open Source Tools

Windows 10 Time Rules

Timeline

Spotting the Signs of Lateral Movement

How to Deploy Cuckoo Sandbox

DFIR SQL Query Repository

Living in the Shadow of the Shadow Brokers

DFRWS IoT Forensic Challenge (2018 – 2019)

Leave a Reply Cancel reply

Tags

Follow Us

About Us

Popular Posts

Timeline

Spotting the Signs of Lateral Movement

How to Deploy Cuckoo Sandbox

DFIR SQL Query Repository

Living in the Shadow of the Shadow Brokers

DFRWS IoT Forensic Challenge (2018 – 2019)