Noah H

icon indicating a website link https://641tech.com

icon company 641Tech icon location Iowa icon location Recovering sysadmin now working in Security. I heard the blue team has cookies and I really like cookies.

Results 6 comments of Noah H

HKCU Entries

Thanks for bring this to our attention. We are working on a bunch of Sysmon config changes in the near future so we will work something in to fix this!

HKCU Entries

We will be pointed this repo to https://github.com/olafhartong/sysmon-modular in some upcoming releases as the group over their is able to dedicate more time to maintaining the config than we are...

Updated Agent Script to Prevent Insecure ACLs

The more I look at this the less I think its caused by the .zip file but rather the directory the file is extracted in. Still an issue though.

System.Windows.Forms not present on Windows Server Core

I dont see the code you pushed. I would recommend forking the repo and then changing the code there then make a pull request back to the project.

HKCU Entries

resolved in https://github.com/blackhillsinfosec/EventLogging/commit/46986e7d96b45f8b32bd227eb466cd8cfd8b24a2

System.Windows.Forms not present on Windows Server Core

Fixed by #19