| http://www.w3.org/ns/prov#value | - Test it!And there you have it, go ahead and test your new settings and execute some Powershell commands and see how it logs unlike before so you can catch your Pentesters, hackers or nefarious admins using Powershell for more than just administration.For you Splunkers, here is a query I threw together to monitor what Powershell Command Line parameters are being used.
|
