search

WithSecureLabs / chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts
GNU General Public License v3.0
2.7k stars 242 forks source link

Adding 4 new rules for rdp_attacks #129

Closed eliza-louise closed 1 year ago

eliza-louise commented 1 year ago

Event logs 1149 and 4624 logon type 10s