search

palantir / windows-event-forwarding

A repository for using windows event forwarding for incident detection and response
Other
1.22k stars 268 forks source link

Removing guidance to enable auditing of privilege use #27

Closed clong closed 6 years ago

clong commented 6 years ago

This auditing control is responsible for the generation of Event Code 4674 events, which can be extremely noisy in certain environments.