Query and report user logons relations from MS Windows Security Events
-
Updated
Aug 9, 2018 - Python
Query and report user logons relations from MS Windows Security Events
This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
An open source project aimed to replicate the Windows SIFT Machine and tools used during SANS Courses minus any payware software.
Docker for the latest Plaso version https://github.com/log2timeline/plaso
Add a description, image, and links to the plaso topic page so that developers can more easily learn about it.
To associate your repository with the plaso topic, visit your repo's landing page and select "manage topics."