1.1 Introduction

Video Activity

Join over 3 million cybersecurity professionals advancing their career

Sign up with

Required fields are marked with an *

or

Sign up with Google

Sign up with Apple

Sign up with Microsoft

View all SSO options

Already have an account? Sign In »

Threat Hunting with Windows Event Forwarding

Course

Time

1 hour 21 minutes

Difficulty

Beginner

CEU/CPE

2

Up Next

1.2 Native Windows Event Forwarding

2.1 Group Policy for Event Collection

2.2 Microsoft System Monitor (SysMon)

2.3 Which Events to log for the Threat Hunt Part 1

2.4 Which Events to log for the Threat Hunt Part 2

Instructed By

Gurvinder Singh

Information Security Manager at American Psychological Association

Similar Content

Exploitation and Mitigation: MSHTML Vulnerability (CVE-2021-40444)

Exploitation and Mitigation: MSHTML Vulnerability (CVE-2021-40444)

The MSHTML Windows remote code execution vulnerability (CVE-2021-40444) identified in September 2021 could allow a ...

2 CEU/CPE Hours Available

Certificate of Completion Offered

Event Log Collection

Event Log Collection

In this lab you will use Splunk Enterprise to ingest logs from a local host ...

Identifying Intrusion and Mitigating Attacks with RHEL Server

Identifying Intrusion and Mitigating Attacks with RHEL Server

This last lab is similar to the Windows Incident Response lab, but different in that ...