Category: Threat Analysis
-
EVTX 2 Elasticsearch
Recently I was challenged with analyzing different evtx files and now I want to make my workflow to accomplish this mission published. In this HowTo we will parse our EVTX Files with an Rust Parser to transform the files into JSON Files. Those will then be delivered to an Logstash instance where we can play…