EvtXHunt is an Autopsy plugin that is able to analyze Windows EVTX logs against a library of SIGMA rules.
Geek Repo:Geek Repo
Github PK Tool:Github PK Tool