Windows Event IDs for Incident Response
A working reference of the Windows event IDs of interest during triage, grouped by the investigative question they answer.
[ read more → ]event-logsA working reference of the Windows event IDs of interest during triage, grouped by the investigative question they answer.
[ read more → ]