Practical Process Analysis - Automating Process Log Analysis with PowerShell

Windows event log analysis is an important and often time-consuming part of endpoint forensics. Deep diving into user logins, process analysis, and PowerShell/WMI activity can take significant time, even with current tools. Additionally, while utilities exist to automatically parse out various...
Matthew Moore
December 29, 2020

All papers are copyrighted. No re-posting of papers is permitted