22 Feb Good administrators check their logs regularly. They need to know what went on when they were away. They need to look for intrud
Good administrators check their logs regularly. They need to know what went on when they were away. They need to look for intruders, compromised machines, stolen or deleted files, and so on. The list of things to look for can be extensive.
Microsoft Windows Event Viewer is a simple program that organizes these logs in a way that makes them easy to view. Learning how Event Viewer works is a great training platform for beginners. It is also a useful diagnostic tool.
In this example, you will enable logging of security events, log in and out of your machine, and then look up the event in Event Viewer. You should complete this within the Maryville Virtual Lab environment.
- Click in the “Search Windows” bar and type Local Security Policy.
- Click on Local Policies, and Audit Policy.
- Double-click on the policy labeled “Audit account logon events.”
- Select both Success and Failure (if they are not already checked).
- Click OK.
- Double-click on the policy labeled “Audit logon events.”
- Select both Success and Failure (if they are not already checked).
- Click OK.
- Take a screenshot of these policies.
- Click the “Search Windows” bar and type Event Viewer.
- Click Windows Logs and Security.
- Take a screenshot of an interesting event in either the security.
- Log off your virtual machine by clicking Start, click your user name at the top, and select Sign Out.
- Wait about a minute and log back into your virtual machine.
- Click the “Search Windows” bar and type Event Viewer.
- Click Windows Logs, and Security.
- Take a screenshot.
- Double-click on a Logon/Logoff event that was just recorded.
- Take a screenshot.
- Students should then complete a page summary of their findings and discuss how these audit logs could be used to detect an insider threat. This page should be at the beginning of your lab.
This is the next chapter of your lab book for the semester. Each Lab Assignment is a new chapter in your lab book.
Your lab book chapter each week should include:
- Cover Page
- Abstract
- Introduction of the lab assignment
- Screenshots that dialogue your lab experience/ what you learned during the exercise
- Conclusion of the lab assignment
- Independent Research – expanding the topic.. ( For example this week, we are focusing on Windows logs, you could discuss various log types, exploiting logs, maintaining and storing logs, etc….)
- References
A Helpful Message regarding the projects/ lab assignments…
Yes, we normally provide steps to follow and a general direction of what is necessary to complete the assignment….. but they are not recipes… they are diving boards for exploration. Sometimes things do not work perfectly… that's OK.. note it in your lab book and continue. The intent is to provide the general direction… the assignment is intended for you to run with it and learn!!
Choose a submission type
Our website has a team of professional writers who can help you write any of your homework. They will write your papers from scratch. We also have a team of editors just to make sure all papers are of HIGH QUALITY & PLAGIARISM FREE. To make an Order you only need to click Ask A Question and we will direct you to our Order Page at WriteDemy. Then fill Our Order Form with all your assignment instructions. Select your deadline and pay for your paper. You will get it few hours before your set deadline.
Fill in all the assignment paper details that are required in the order form with the standard information being the page count, deadline, academic level and type of paper. It is advisable to have this information at hand so that you can quickly fill in the necessary information needed in the form for the essay writer to be immediately assigned to your writing project. Make payment for the custom essay order to enable us to assign a suitable writer to your order. Payments are made through Paypal on a secured billing page. Finally, sit back and relax.