drop security evtx csv · 4688 gaps · command line logging · lolbin matches · execution density · csv export · runs locally
security evtx csv
drop security evtx csv exports
or click
4688 process creation · 4719 audit policy · commandline column improves analysis
drop security evtx csv (4688 · 4719)