Create five analytics, with corresponding attacker scripts to generate the data.

• Event Log Wipe
• regsvr32.exe usage - https://attack.mitre.org/wiki/Technique/T1117
• InstallUtil usage - https://github.com/redcanaryco/atomic-red-team/blob/master/Windows/Execution/InstallUtil.md

We may need to install microsoft.net to make this work properly