Log review

Wrote a simple script to aid with log review using keywords. You can use the below by substituting the keywords as well as log source.

#!/bin/bash
grep "Authentication fail" /mnt/c/monthly/app.log > /mnt/c/monthly/app-fail.txt
grep "Authentication fail" /mnt/c/monthly/os.log > /mnt/c/monthly/os-fail.txt

VM for ransomware investigations

 My laundry list of tools/software useful when investigating ransomware cases.    Tor: Obviously need this to access Onion sites. Transmissi...