all InfoSec news
Winevt_Logs_Analysis - Searching .Evtx Logs For Remote Connections
Feb. 5, 2023, 11:30 a.m. | noreply@blogger.com (Unknown)
KitPloit - PenTest Tools! www.kitploit.com
Simple script for the purpose of finding remote connections to Windows machine and ideally some public IPs. It checks for some EventIDs regarding remote logins and sessions.
You should pip install -r requirements.txt so the script can work and parse some of the .evtx files inside winevt folder.
The winevt/Logs folders and the script must have identical file path.
Execution Example
Result Example
Download Winevt_Logs_Analysis
connections download evtx files folder folders install ips logins logs machine path pip public requirements result script sessions simple txt windows work
More from www.kitploit.com / KitPloit - PenTest Tools!
Galah - An LLM-powered Web Honeypot Using The OpenAI API
3 days, 5 hours ago |
www.kitploit.com
CSAF - Cyber Security Awareness Framework
6 days, 5 hours ago |
www.kitploit.com
HackerInfo - Infromations Web Application Security
1 week, 1 day ago |
www.kitploit.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Principal Business Value Consultant
@ Palo Alto Networks | Chicago, IL, United States
Cybersecurity Specialist, Sr. (Container Hardening)
@ Rackner | San Antonio, TX
Penetration Testing Engineer- Remote United States
@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
Internal Audit- Compliance & Legal Audit-Dallas-Associate
@ Goldman Sachs | Dallas, Texas, United States
Threat Responder
@ Deepwatch | Remote