Practical Process Analysis - Automating Process Log Analysis with PowerShell

Windows event log analysis is an important and often time-consuming part of endpoint forensics. Deep diving into user logins, process analysis, and PowerShell/WMI activity can take significant time, even with current tools. Additionally, while utilities exist to automatically parse out various...
By Matthew Moore
December 29, 2020

All papers are copyrighted. No re-posting of papers is permitted