Hi All
I have the windows security event files (.evtx) files from a computer and i want to get the details of remote logins to it. Kindly suggest the approach and tools i should use for it. I am a new to log analysis so if anyone can just post a brief guide it would be really helpful.
Event Log Explorer™ for Windows event log analysis
Event Log Explorer™ is an effective software solution for analyzing and monitoring events recorded in Security, System, Application and other logs of Microsoft Windows operating systems. Event Log Explorer greatly extends standard Windows Event Viewer functionality and brings many new features for IT-administrators and forensic investigators.
Event Log Explorer lets you quickly browse, find and report on problems, security warnings and all other events that are generated within Windows. Thanks to Event Log Explorer, monitoring and analysis of events recorded in Security, System, Application, Directory Service, DNS, and other logs of Microsoft Windows operating systems gets much faster and really effective.
According to our customers' feedback, Event Log Explorer helps to complete event log tasks two (and even more) times faster than standard Windows Event Viewer.
Supported OS XP, Vista, 7, 8, 10, 2003, 2008, 2012
http//eventlogxp.com/