Windows Event Logs and Finding Evil: Cybersecurity Labs Powered by Hack The Box
With Hack The Box
Liked by 34 users
Duration: 5h 4m
Skill level: Intermediate
Released: 10/30/2025
Course details
Explore Windows Event Logs and their critical role in detecting suspicious and malicious activity within enterprise environments. Using Cybersecurity Labs powered by Hack The Box, learners will gain hands-on experience with the structure and components of Windows Event Logs, identifying which logs are most valuable for investigations, and leveraging Sysmon to enhance logging and monitoring capabilities. The course also covers Event Tracing for Windows (ETW), explaining its architecture, components, and practical detection use cases. To streamline analysis and improve efficiency, learners will use the Get-WinEvent PowerShell cmdlet to retrieve, filter, and analyze logs effectively.
This course is for security analysts, threat hunters, incident responders, and IT professionals responsible for monitoring, investigating, and responding to Windows-based security events.
Prerequisites
- Windows fundamentals
- Penetration testing fundamentals
Skills you’ll gain
Earn a sharable certificate
Share what you’ve learned, and be a standout professional in your desired industry with a certificate showcasing your knowledge gained from the course.
-
Showcase on your LinkedIn profile under “Licenses and Certificate” section
-
Download or print out as PDF to share with others
-
Share as image online to demonstrate your skill
Meet the instructor
Learner reviews
Contents
What’s included
- Learn on the go Access on tablet and phone
Similar courses
Download courses
Use your iOS or Android LinkedIn Learning app, and watch courses on your mobile device without an internet connection.