Windows Forensic Handbook

CtrlK

👋Welcome
Artifacts by Type
Artifacts by Activity

Powered by GitBook

On this page

Artifacts by Type
📅Event Log Artifacts

Security

EventID 4688: A new process has been created EventID 4624: An account was successfully logged on

Last updated 1 year ago