Mastodawn

Tedi Heriyanto Jun 23, 2025

Leveraging Windows Event Logs for Effective Threat Hunting: https://b1ackmamba.medium.com/leveraging-windows-event-logs-for-effective-threat-hunting-ca6be52e93e1

#windowseventlogs #threathunting

Leveraging Windows Event Logs for Effective Threat Hunting

Windows Event Logs are a critical tool for threat hunters, offering detailed insights into system activities to detect and respond to potential security threats. By focusing on specific Event IDs…

Medium

Tedi Heriyanto May 4, 2025

Windows Event Log Forensics: Techniques, Tools, and Use Cases: https://belkasoft.com/windows-event-log-forensics

#windowseventlogs #WindowsForensics

Windows Event Log Forensics: Techniques, Tools, and Use Cases

Learn how to analyze Windows event logs in digital forensics and how Belkasoft X enhances event log analysis.

Tedi Heriyanto May 1, 2024

Detecting browser data theft using Windows Event Logs: https://security.googleblog.com/2024/04/detecting-browser-data-theft-using.html

#windowseventlogs #threatdetection

Detecting browser data theft using Windows Event Logs

Posted by Will Harris, Chrome Security Team Chromium's sandboxed process model defends well from malicious web content, but...

Google Online Security Blog

Tanisha L. Turner Feb 24, 2024

APT-Hunter is a great Python built tool for detecting APTs (Advanced Persistent Threats) in windows event logs

Check ✔️ it out:
https://github.com/ahmedkhlief/APT-Hunter

#threathunting #pythontools #securitytools #windowseventlogs

GitHub - ahmedkhlief/APT-Hunter: APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover su...

GitHub

Tedi Heriyanto Jan 20, 2024

Yamato Security's Windows Event Log Configuration Guide For DFIR And Threat Hunting: https://github.com/Yamato-Security/EnableWindowsLogSettings

#windowseventlogs #dfir #threathunting

GitHub - Yamato-Security/EnableWindowsLogSettings: Documentation and scripts to properly enable Windows event logs.

Documentation and scripts to properly enable Windows event logs. - Yamato-Security/EnableWindowsLogSettings

GitHub

Tedi Heriyanto Sep 2, 2023

Windows Event Log Analysis: https://amr-git-dot.github.io/forensic%20investigation/EventLog_Analysis/

#eventlog #windowseventlogs #dfir

EventLog Analysis

Windows Event log parsing

Amr Ashraf

0xD

Apr 18, 2023

Windows Event Logs - I have just completed this room! Check it out: https://tryhackme.com/room/windowseventlogs #tryhackme #eventlogs #wevtutil #get-winevent #eventviewer #windowseventlogs via @RealTryHackMe

TryHackMe | Cyber Security Training

TryHackMe is a free online platform for learning cyber security, using hands-on exercises and labs, all through your browser!

TryHackMe

🏁⚡Omar Two Tone⚡🏁

Feb 17, 2023

How to filter security log events for signs of trouble 👇 💡

https://www.techtarget.com/searchwindowsserver/tip/How-to-filter-Security-log-events-for-signs-of-trouble

#cybersecurity #logevents #windowseventlogs

How to filter Security log events for signs of trouble | TechTarget

Use PowerShell to filter Security log events then send alerts to administrators when suspicious activity occurs in your Windows environment.

SearchWindowsServer

Tanisha L. Turner Feb 13, 2023

APT-Hunter - A threat hunting tool for Windows Event logs from a purple team 💜 perspective to detect hidden suspicious activity in windows event logs
https://github.com/ahmedkhlief/APT-Hunter

#threathunting #purpleteam #windowseventlogs #threatdetection

GitHub - ahmedkhlief/APT-Hunter: APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

GitHub