Log example

Posted on September 29September 29 by Darril

This sample log is for the blog post on privilege escalation.

Entry #	Keywords	Source	Event ID	Task Category
1	Audit Success	Microsoft Windows security auditing	4624	Logon
2	Audit Success	Microsoft Windows security auditing	4672	Special Logon
3	Audit Success	Microsoft Windows security auditing	4624	Logon
4	Audit Success	Microsoft Windows security auditing	4624	Logon
5	Audit Success	Microsoft Windows security auditing	4648	Logon
6	Audit Failure	Microsoft Windows security auditing	4673	Sensitive Privilege Use
7	Audit Success	Microsoft Windows security auditing	4673	Sensitive Privilege Use

Leave a Reply Cancel reply

You must be logged in to post a comment.

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Subscribe To Our Newsletter

Join our mailing list and get a free excerpt of the CompTIA Security+: Get Certified Get Ahead: SY0-501 Study Guide. This excerpt includes the introduction and Chapter 1.

You have Successfully Subscribed!