@port139 Blog

基本的にはデジタル・フォレンジックの技術について取り扱っていますが、記載内容には高確率で誤りが含まれる可能性があります。

2019-04-01から1ヶ月間の記事一覧

AD ACL and ADTimeline

Note:I translated Japanese into English using Google Translate.Thank you, Google. Change the ACL of the object on AD and check ADTimline. Use AD ACL Scanner as a tool to check the ACL of AD objects. AD Timeline-FIRST TC Page 22 has an entr…

RDP NLA and ID 4624 Logon Type3

Note:I translated Japanese into English using Google Translate.Thank you, Google. If NLA(Network Level Authentication) is enabled for RDP connection, event ID 4624 logon type 3 will be recorded in the security log. Is there a way to determ…