bars
InfoSec Notes
search
circle-xmark
⌘
Ctrl
k
copy
Copy
chevron-down
DFIR
chevron-right
Windows
TTPs analysis
Accounts usage
chevron-right
Local persistence
chevron-right
Lateral movement
chevron-right
PowerShell activity
chevron-right
Program execution
chevron-right
Timestomping
chevron-right
EVTX integrity
chevron-right
System uptime
chevron-right
ActiveDirectory replication metadata
chevron-right
ActiveDirectory persistence
chevron-right
Previous
Miscellaneous
chevron-left
Next
Accounts usage
chevron-right
Last updated
4 years ago
