New Chainsaw tool helps IR teams analyze Windows event logs


Incident responders and blue teams have a new tool called Chainsaw that speeds up searching through Windows event log records to identify threats.

The tool is designed to assist in the firstresponse stage of a security engagement and can also help blue teams triage entries relevant for the investigation.

Read More…