[logs] Windows Event Log Attack Signatures

From: Rainer Gerhards (rgerhardsat_private)
Date: Tue Feb 18 2003 - 09:57:19 PST

  • Next message: Jason Royes: "Re: [logs] TLP 0.8a Released"

    Hi all,
    
    I am currently working on consolidating a set of windows event log
    attack signatures. I would appreciate any links or information you might
    have in this regard.
    
    I am looking for anything that manifests in the event logs. What are you
    looking for in the real world? ;-)
    
    Many thanks,
    Rainer Gerhards
    Adiscon
    _______________________________________________
    LogAnalysis mailing list
    LogAnalysisat_private
    http://lists.shmoo.com/mailman/listinfo/loganalysis
    



    This archive was generated by hypermail 2b30 : Tue Feb 18 2003 - 11:46:53 PST