Investigation Scenario 🔎 A user workstation executed gpedit.msc for an unknown reason. What do you look for to investigate whether an incident occurred? #InvestigationPath #DFIR #SOC - ThreadSky

chrissanders88.bsky.social • 35 days ago

Investigation Scenario 🔎

A user workstation executed gpedit.msc for an unknown reason.

What do you look for to investigate whether an incident occurred?

#InvestigationPath #DFIR #SOC