Windows Events, Sysmon and Elk…oh my! (Part 2)

In this post, we will be working through setting up a log collector for Windows Event Forwarding, creating a GPO to support Windows Event Forwarding, creating a GPO to deploy SYSMON, creating event subscriptions, forwarding events using Winlogbeat to ELK, and generating events.

Learn More

Windows Events, Sysmon and Elk…oh my!

This is part 1 in a multi-part blog series on helping organizations implement robust, effective Windows monitoring.

Learn More

ESPKey + Long Range RFID Reader = A New Tastic Thief

We’re not going to document how to build another RFID Tastic-Thief. Instead, we’ve come up with a different approach to building a long-range reader that we think is worth sharing.

Learn More