Learn how to use the QELP tool to quickly triage ESXi servers. Parse through the relevant logs quickly in order to investigate malicious activity.

Discover how to detect and analyze malicious Windows Scheduled Tasks with real-world examples, event log artifacts, and forensics tips.

AnyDesk is a commonly abused, but legitimate RMM tool. Learn about the artifacts left behind and how to investigate AnyDesk abuse.

Investigate BITS jobs and identify the event logs and database associated with this!