Summary: <p>WEFFLES are delicious!</p> <p>WEFFLES stands for <a href="https://blogs.technet.microsoft.com/jepayne/2017/12/08/weffles/" rel="nofollow noreferrer noopener" target="_blank">Windows Event Logging Forensic Logging Enhancement Services</a> and is Microsoft's cool (and free!) console for responding to incidents and hunting threats. I had a chance to play with it in the lab this week and for the most part, the <a href="https://github.com/jepayneMSFT/WEFFLES" rel="nofollow noreferrer noopener" target="_blank">install</a> of WEFFLES went well, but I had one minor <a href="https://github.com/jepayneMSFT/WEFFLES/issues/1" rel="nofollow noreferrer noopener" target="_blank">issue</a> that was cleared up easily.</p> <p>As I went through the MS TechNet article, I wrote a full <a href="http://bpatty.rocks/#!pentesting/blue_team/weffles.md" rel="nofollow noreferrer noopener" target="_blank">install write-up</a> on my <a href="http://bpatty.rocks" rel="nofollow noreferrer noopener" target="_blank">BPATTY</a> site. </p> <p>So go gobble up some WEFFLES and <a href="https://7ms.us/contact/" rel="nofollow noreferrer noopener" target="_blank">let me know</a> how it goes!</p>
