all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

DFSP # 422 - EVTX Express: Cracking into Windows Logs Like a Pro

Add to bookmarks
March 19, 2024, 5:54 a.m. |

Digital Forensic Survival Podcast digitalforensicsurvivalpodcast.libsyn.com

Today I'm talking Windows forensics, focusing on Windows event logs. These logs are very valuable for fast triage, often readily available in your organization's SIEM. But have you ever wondered about the processes enabling this quick access? Not only are the logs automatically collected and fed into the appliance, but they are also formatted and normalized for easy data searchability. This is crucial, as the logs are originally in a complex format challenging to natively interpret. Now, picture a scenario …

access cracking event event logs evtx express fast fed forensics logs organization pro processes siem talking today triage windows windows event logs windows forensics windows logs

Visit resource

More from digitalforensicsurvivalpodcast.libsyn.com / Digital Forensic Survival Podcast

DFSP # 427 - MOF Balls 3 days, 22 hours ago | digitalforensicsurvivalpodcast.libsyn.com
app artifact attackers dfir +11
DFSP # 426 - SSH Forensics: Log Analysis 1 week, 3 days ago | digitalforensicsurvivalpodcast.libsyn.com
analysis analyst forensics important +9
DFSP # 425 - SSH Forensics: Host-Based Artifacts 2 weeks, 3 days ago | digitalforensicsurvivalpodcast.libsyn.com
artifacts explained fast forensics +7
DFSP # 424 - SSH Forensics: Understanding Secure Shell 3 weeks, 3 days ago | digitalforensicsurvivalpodcast.libsyn.com
access basics communications concepts +18
DFSP # 423 - Guiding Lights: Cyber Investigations Investigation Lifecycle 1 month ago | digitalforensicsurvivalpodcast.libsyn.com
aspect clear cyber cyber investigations +18
DFSP # 422 - EVTX Express: Cracking into Windows Logs Like a Pro 1 month, 1 week ago | digitalforensicsurvivalpodcast.libsyn.com
access cracking event event logs +17
DFSP # 421 - Memory Lane: Fileless Linux Attacks Unraveled 1 month, 2 weeks ago | digitalforensicsurvivalpodcast.libsyn.com
anonymous attacks data data storage +19
DFSP # 420 - Failing, Stopping and Crashing 1 month, 3 weeks ago | digitalforensicsurvivalpodcast.libsyn.com
event exploitation forensic investigations +11
DFSP # 419 - What the Flux 2 months ago | digitalforensicsurvivalpodcast.libsyn.com
analysts attackers domains fast +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Director, Cybersecurity - Governance, Risk and Compliance (GRC)

@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr
View on infosec-jobs.com

Information Security Risk Metrics Lead

@ Live Nation Entertainment | Work At Home-Connecticut
View on infosec-jobs.com

IT Product Owner - Enterprise DevSec Platform (d/f/m)

@ Airbus | Hamburg - Finkenwerder
View on infosec-jobs.com

Senior Information Security Specialist

@ Arthur Grand Technologies Inc | Arlington, VA, United States
View on infosec-jobs.com

Information Security Controls SME

@ Sword | Aberdeen, Scotland, United Kingdom
View on infosec-jobs.com
View more jobs