Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 2)
Black Hills Information Security
2025-10-01 22:00:00
收藏
But what if we need to wrangle Windows Event Logs for more than one system? In part 2, we’ll wrangle EVTX logs at scale by incorporating Hayabusa and SOF-ELK into my rapid endpoint investigation workflow (“REIW”)!
The post Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 2) appeared first on Black Hills Information Security, Inc..
目录
最新
- How to Set Smart Goals (That Actually Work For You)
- Inside the BHIS SOC: A Conversation with Hayden Covington
- Abusing Delegation with Impacket: Resource-Based Constrained Delegation
- Why You Got Hacked – 2025 Super Edition
- Abusing Delegation with Impacket (Part 2): Constrained Delegation
- Abusing Delegation with Impacket (Part 1): Unconstrained Delegation
- GoSpoof – Turning Attacks into Intel
- Model Context Protocol (MCP)