Detecting adversaries is not always easy. Especially when it comes to correlating Windows Event Logs to real-world attack patterns and techniques.
Join me to find out how to match Windows Event Log IDs with the MITRE ATT&CK framework and methods to simplify the detection in your environment.
The PowerShell edition: see how to correlate events not only via the GUI, now you can automate it..!
18 сен 2024