Security Basics mailing list archives
Re: tool to log file access
From: H Carvey <keydet89 () yahoo com>
Date: 28 Feb 2005 11:21:43 -0000
In-Reply-To: <91FD9E3DC7F754489F7F83AC886B67AD0CE7DF8A () ESMADEXCH02 azertia com>
Is there any tool to log all files accesses that creates a report more = useful than the event log?
Use WMI to create a listener, waiting for file events...have it start watching at the root of the drive. If this is written in C# or in Perl (and then compiled via Perl2Exe), you could easily have it as a service. H. Carvey "Windows Forensics and Incident Recovery" http://www.windows-ir.com http://windowsir.blogspot.com
Current thread:
- RE: tool to log file access Andrew Shore (Feb 28)
- <Possible follow-ups>
- RE: tool to log file access Reece, Terry (Feb 28)
- Re: tool to log file access H Carvey (Feb 28)
- RE: tool to log file access Jeff Gercken (Feb 28)
- Re: tool to log file access H Carvey (Feb 28)
- Any host based and application based log analysis tools around ricci (Mar 01)
- Re: Any host based and application based log analysis tools around Daniel Cid (Mar 01)
- Any host based and application based log analysis tools around ricci (Mar 01)