Archives for Blog RawSec

CTF Write-Up Hack.lu 2017: bit

Sysmon v6.10 VS WMI Persistence

Sysmon Events Table

EVTX Flat Storage Optimization

Carving EVTX