Build precise queries to find exactly what you need
Press ESC to close
Your review has been submitted and is pending approval.
I use these dashboards to troubleshoot Windows issues and if no "customer" issues are present I can dig through the event logs and find issues that are not causing work stoppages (yet) and try to fix them ahead of time.
Current Version
1.0.0
Last Release Date
2016-08-29
Owner
Eric
License
GPL
Compatible With
========================================== Windows Auditpol/EventLogs:
The custom audit policy I used to gather my log data are based off of Randy Franklin Smith's webpage:
(https://www.ultimatewindowssecurity.com/wiki/WindowsSecuritySettings/Recommended-Baseline-Audit-Policy-for-Windows-Server-2008)
Mr. Smith's list edits the auditpol to specifically reduce "loud" MS Window logs which send too much data while not providing much value for the average Tech.
===================================== Dashboards:(some dashboards should NOT have any events if a computer has no issues, you can test this by extending the dashboard to 30+ days to find alerts)
The dashboards are based off of "Spotting-the-adversary-with-windows-event-log-monitoring":
https://www.iad.gov/iad/library/ia-guidance/security-configuration/applications/spotting-the-adversary-with-windows-event-log-monitoring.cfm
Please verify that you are getting "Good" data before fully trusting any dashboard. I'm not a MS Windows Pro but if YOU ARE, I'm happy to make corrections to the above dashboards.
thank YOU FOR THIS MAN! AWESOME JOB! PLEASE KEEP THEM COMING!
You must be logged in to submit a review.
To:
From: