Forum Discussion
Solved
Advanced Hunting Query Powershell Command Line
I was testing if I was able to detect various PowerShell Commands in the Advanced Hunting and this was the result: Via Windows Powershell CommandLine I executed: (Invoke-Webrequest -Uri "https:/...
You will need to enable Powershell script block logging via GPO to see the full commands that were run
You will need to enable Powershell script block logging via GPO to see the full commands that were run
Are you sure about this - will the log config on the endpoint decide what is logged in Device*-tables in Advanced hunting?
