Blue Cell Tools
Defensive Tactics
- How to enrich Windows logs w/ Sysmon Modular
- How to forward Windows logs w/ Winlogbeat
- How to remotely query host artifacts w/ Powershell
- How to search host artifacts for Adversary Activities using HELK and Splunk
Search