TWCN Tech News

How to read Windows Update log in Windows 11/10

Windows Update uses Event Tracing for Windows (ETW) to generate diagnostic logs in Windows 11/10, and save them in the .etl file format. The reason why this has been done is that it reduces disk space ...
Computerworld

Log-on type codes revealed

The log-on/log-off category of the Windows security log gives you the ability to monitor all attempts to access the local computer. In this article I’ll examine each log-on type in greater detail and ...
CSOonline

The most important Windows 10 security event log IDs to monitor

Event 4688 documents each program a computer executes, its identifying data, and the process that started it. Several event 4688s occur on your system when you log into a system. For example, Session ...
Dark Reading

New Tool For Centralizing Windows Logs

Microsoft has always overlooked centralized logging in Windows. To date, the most effective way to centralize Windows Event Logs has been through event log to syslog tools and custom agents for the ...
Bleeping Computer

JPCERT shares Windows Event Log tips to detect ransomware attacks

These logs often contain traces left behind by ransomware attacks that could reveal the entry points used by the attackers and their "digital identity." Here are some examples of ransomware traces ...
MCPmag

Using PowerShell To Parse and Understand Windows Server DHCP Logs

Have you ever scrolled through the Windows Server DHCP logs in the Notepad app while trying to troubleshoot something? Then you know that it's a tedious task. There are many alternatives to Notepad ...