rfaircloth.com
Splunk the server and the enpoint aka “All the Things”
I’m sharing something today that has been available thanks to many in white papers and presentations dealing with identification of malicious code and activities in your windows event data. S…