DeepBlueCLI is a PowerShell module to allow review of Security and System event logs within Windows.
https://github.com/sans-blue-team/DeepBlueCLI
https://www.activecountermeasures.com/log-analysis-part-2-detecting-host-attacks-or-how-i-found-and-fell-in-love-with-deepbluecli/
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.