Update Defender GPO, Update Splunk UF

2020-12-05 09:16:42 -08:00
parent 4067a98c6c
commit a9e3b3d5de
14 changed files with 32 additions and 32 deletions
--- a/Vagrant/scripts/install-evtx-attack-samples.ps1
+++ b/Vagrant/scripts/install-evtx-attack-samples.ps1
@@ -67,7 +67,7 @@ sourcetype = preprocess-winevt'
        } Catch {
          Start-Sleep 10
          Stop-Service -Name SplunkForwarder -Force
-          Start-Service -Name SplunkForwarder -Force
+          Start-Service -Name SplunkForwarder
        }
        Write-Host "$('[{0:HH:mm}]' -f (Get-Date)) Done! Look in 'index=EVTX-ATTACK-SAMPLES' in Splunk to query these samples."
    }