8 lines
567 B
PowerShell
8 lines
567 B
PowerShell
# Purpose: Installs AutorunsToWinEventLog from the Palantir WEF repo: (https://github.com/palantir/windows-event-forwarding/tree/master/AutorunsToWinEventLog)
|
|
# TL;DR - Logs all entries from Autoruns to the Windows event log to be indexed by Splunk
|
|
Write-Host "Installing AutorunsToWinEventLog..."
|
|
cd "c:\Users\vagrant\AppData\Local\Temp\windows-event-forwarding-master\AutorunsToWinEventLog"
|
|
.\Install.ps1
|
|
Write-Host "AutorunsToWinEventLog installed. Starting the scheduled task. Future runs will begin at 11am"
|
|
Start-ScheduledTask -TaskName "AutorunsToWinEventLog"
|