Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 1)
Black Hills Information Security
2025-09-17 22:09:33
收藏
In part 1 of this post, we’ll discuss how Hayabusa and “Security Operations and Forensics ELK” (SOF-ELK) can help us wrangle EVTX files (Windows Event Log files) for maximum effect during a Windows endpoint investigation!
The post Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 1) appeared first on Black Hills Information Security, Inc..
目录
最新
- How to Set Smart Goals (That Actually Work For You)
- Inside the BHIS SOC: A Conversation with Hayden Covington
- Abusing Delegation with Impacket: Resource-Based Constrained Delegation
- Why You Got Hacked – 2025 Super Edition
- Abusing Delegation with Impacket (Part 2): Constrained Delegation
- Abusing Delegation with Impacket (Part 1): Unconstrained Delegation
- GoSpoof – Turning Attacks into Intel
- Model Context Protocol (MCP)