Discover how to detect and analyze malicious Windows Scheduled Tasks with real-world examples, event log artifacts, and forensics tips.

AnyDesk is a commonly abused, but legitimate RMM tool. Learn about the artifacts left behind and how to investigate AnyDesk abuse.

Investigate BITS jobs and identify the event logs and database associated with this!

Learn about the various artifacts created to help investigate lateral movement via RDP on both the source and target system