Topic: Windows Logs
The unit lab focuses on Linux, but you also need some insight into Windows. Windows reports events in their logs. Each event is associated with an event code. There are many Internet resources which decode these event codes. Some for your consideration are:
Ultimate Windows Security. (n.d.).
Fortuna, A. (2019, June 12). Windows security event logs: My own cheatsheet. https://www.andreafortuna.org/2019/06/12/windows-security-event-logs-my-own-cheatsheet
Microsoft. (2018, July 30). Appendix L: Events to monitor. https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/appendix-l–events-to-monitor
SolarWinds Loggly. (n.d.). Ultimate guide to logging. https://www.loggly.com/ultimate-guide/troubleshooting-with-windows-logs
Using any of these resources, pick a Windows event you believe would be helpful in your role as a forensic analyst. Describe the event number, what the event describes, and why you believe this event is useful.
*Here is a reference reading, Hands-on Incident Response and Digital Forensics, by Mike Sheward.
- Chapter 11: Capturing a Moving Target
What Students Are Saying About Us
.......... Customer ID: 12*** | Rating: ⭐⭐⭐⭐⭐"Honestly, I was afraid to send my paper to you, but you proved you are a trustworthy service. My essay was done in less than a day, and I received a brilliant piece. I didn’t even believe it was my essay at first 🙂 Great job, thank you!"
.......... Customer ID: 11***| Rating: ⭐⭐⭐⭐⭐
"This company is the best there is. They saved me so many times, I cannot even keep count. Now I recommend it to all my friends, and none of them have complained about it. The writers here are excellent."
"Order a custom Paper on Similar Assignment at essayfount.com! No Plagiarism! Enjoy 20% Discount!"
