Add detector and event log to watch for Event Log Service stop/start as an indicator or event log tampering with eventlogedit

Browse Source

...

This commit is contained in:

Joshua Wright

2019-04-28 14:23:23 -04:00

parent a98ef0e402

commit 2fe7d13599

2 changed files with 552 additions and 535 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

1087

DeepBlue.ps1

File diff suppressed because it is too large Load Diff

BIN

evtx/disablestop-eventlog.evtx Normal file

Binary file not shown.