Skip to content

Commit b0ca337

Browse files
brazilianscriptguybrazilianscriptguy
authored
Add files via upload
Signed-off-by: LUIZ HAMILTON ROBERTO DA SILVA <luizhamilton.lhr@gmail.com>
1 parent eec34f5 commit b0ca337

8 files changed

Lines changed: 8075 additions & 0 deletions

BlueTeam-Tools/EventLogMonitoring/Integrated-Forensic-Toolset/EventID-1102-6005-6006-6008-6009-6013-1074-1076-SystemIntegrityRestartAudit.ps1

Lines changed: 1083 additions & 0 deletions
Large diffs are not rendered by default.

BlueTeam-Tools/EventLogMonitoring/Integrated-Forensic-Toolset/EventID-307-PrintingService-Audit.ps1

Lines changed: 1494 additions & 0 deletions
Large diffs are not rendered by default.

BlueTeam-Tools/EventLogMonitoring/Integrated-Forensic-Toolset/EventID-4624-4625-4634-4648-4768-4769-4771-4800-4801-AuthenticationTimelineAudit.ps1

Lines changed: 1146 additions & 0 deletions
Large diffs are not rendered by default.

BlueTeam-Tools/EventLogMonitoring/Integrated-Forensic-Toolset/EventID-4663-5140-5145-FileServerEvidenceAudit.ps1

Lines changed: 1385 additions & 0 deletions
Large diffs are not rendered by default.

BlueTeam-Tools/EventLogMonitoring/Integrated-Forensic-Toolset/EventID-4672-4698-4720-4724-4728-4732-4735-4756-7045-PrivAccessPersistenceAudit.ps1

Lines changed: 1161 additions & 0 deletions
Large diffs are not rendered by default.

BlueTeam-Tools/EventLogMonitoring/Integrated-Forensic-Toolset/EventID-5136-5137-5141-ADObjectChangeAudit.ps1

Lines changed: 996 additions & 0 deletions
Large diffs are not rendered by default.

BlueTeam-Tools/EventLogMonitoring/Integrated-Forensic-Toolset/EventID-EVTX-ForensicCountAudit.ps1

Lines changed: 810 additions & 0 deletions
Large diffs are not rendered by default.

BlueTeam-Tools/EventLogMonitoring/Integrated-Forensic-Toolset/EventID-EVTX-Strings-StructureMapping.ps1

Whitespace-only changes.

0 commit comments

Comments
 (0)