[logs] Windows Event Log Attack Signatures

• Previous message: Jason Royes: "Re: [logs] TLP 0.8a Released"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi all,

I am currently working on consolidating a set of windows event log
attack signatures. I would appreciate any links or information you might
have in this regard.

I am looking for anything that manifests in the event logs. What are you
looking for in the real world? ;-)

Many thanks,
Rainer Gerhards
Adiscon
_______________________________________________
LogAnalysis mailing list
LogAnalysisat_private
http://lists.shmoo.com/mailman/listinfo/loganalysis

• Next message: Jason Royes: "Re: [logs] TLP 0.8a Released"
• Previous message: Jason Royes: "Re: [logs] TLP 0.8a Released"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Feb 18 2003 - 11:46:53 PST