Windows Security Event Logs: my own cheatsheet

During a forensic investigation, Windows Event Logs are the primary source of evidence.
Windows Event Log analysis can help an investigator draw a timeline based on the logging information and the discovered artifacts, but a deep knowledge of events IDs is mandatory.

Continue…

My Weekly RoundUp #75

After some months of rest, i’ve decided to star again publishing of my Weekly RoundUp. Why?

That’s simple: i also started a process of Social Media Detox, that involve deactivation of my Social Network accounts. Without them, i don’t have any way to share with my followers interesting links that i’ve read in the week.

So let’s start: there are a lot of news!

Continue…