Monitor Windows Event Logs in Real-Time

In this course you will learn about LimaCharlie’s powerful ability to capture and analyze Windows Event Logs (WEL) in real-time. Ingested WEL are indexed along common indicators of compromise (IoC’s) and run through the Detection & Response engine.

Enroll for free

Course curriculum

1

Overview
- Introduction
- Installing the Agent
- Creating a Collection Rule
- Capturing a WEL
- Porting a Sigma Rule to LimaCharlie
- Sending Your Data Elsewhere