CtrlK

🛠️DFIR Toolbox
Remote Management Tools (RMM)
- RustDesk
Windows Forensic Artifacts
- Windows Event Logs (WEvtx)
  - Using Chainsaw
  - Using Hayabusa

Powered by GitBook

On this page

Windows Forensic Artifacts

Windows Event Logs (WEvtx)

Using Chainsaw Using Hayabusa

PreviousRustDesk NextUsing Chainsaw