Notes

Here’s an example of what I’m *not* trying to do – I don’t want to add more crap to home networks; I just want juicy juicy log data. And to be able to understand it:

https://www.sans.org/reading-room/whitepapers/hsoffice/protecting-home-devices-malicious-blacklisted-websites-36152

I’m definitely going to need to learn me some PowerShell to make this work – to dig through and make events sensible:

Event Log Queries Using PowerShell

https://en.wikiversity.org/wiki/PowerShell/Event_Logs

Search the event log with the Get-WinEvent PowerShell cmdlet

Leave a Reply