I have Splunk setup with the universal forwarder installed on all of my Windows machines sending the event logs to Splunk. Collecting all of the event logs with Splunk is working great. Now I was ...

EventTracker, a handy tool that offers the ability to centralize Windows logs,correlate events to pinpoint an exact problem, and much more. While expensive monitoring products such as EventTracker ...

An excellent PowerShell script is easy to troubleshoot when something goes wrong. When developing scripts, it's important to not just consider "working" a symbol of success but also that you have ...

In this post, we will show you how to use Event Viewer to check for unauthorized use of a Windows computer. While Windows Event Viewer comes across as a useful tool for viewing event logs and fixing ...

The default event logging in Windows 10 won't give you enough information to properly conduct intrusion forensics. These settings and tools will help you collect the needed log data. After a ...

An application named Event Monitor is a tech support scam with a twist, working by monitoring the Windows event logs, and showing a popup with an alarming message every time it detects an app crash.

In Event Viewer, the errors logged are common, and you will come across different errors with different Event IDs. The events that are recorded in the security logs usually will be either of the ...

Security event monitoring systems are often plagued by signal-to-noise problems. Here's how to ensure they produce meaningful alerts One of the most interesting facts in the field of computer security ...

This article is also available as a TechRepublic download. Most of the time, when a Windows related article talks about audit logs, those logs are security related. When it comes to the DHCP services ...