A powerful technique for finding threats in Windows event logs.
I work in a GRC role, so I won't ever really get time to play with this - but really enjoyed reading this, and a little tempted to play with it at home.
I like adding the hayabusa .csv to sql browser and sorting the rule title matches to least occurrence. Usually find what I’m looking for.
Find Threats in Event Logs with Hayabusa
I work in a GRC role, so I won't ever really get time to play with this - but really enjoyed reading this, and a little tempted to play with it at home.
I like adding the hayabusa .csv to sql browser and sorting the rule title matches to least occurrence. Usually find what I’m looking for.