Microsoft DNS Logs Parsing and Analysis: Establishing a Standard Toolset and Methodology for Incident Responders

Microsoft DNS request and response event logs are frequently ignored by incident responders within an investigation due to a historical reputation of being hard to parse and analyze. The fundamental importance of DNS to networking and the functioning of the Internet suggests this oversight could...
By
Shelly Giesbrecht
November 2, 2018

All papers are copyrighted. No re-posting of papers is permitted

470x382_Research_Paper_gray.jpg