TB Event Logs
by C. Casquatch
An event log is a file that contains information about usage and operations of operating systems,
applications or devices. Security professionals or automated security systems like SIEMs can access this data to manage security, performance, and troubleshoot IT issues. Security event log contain events related to security, such as login attempts, object access, and file deletion. Administrators determine which events to log, in accordance with their audit policy. Application logs contain events logged by applications. Which events get logged is determined by the application developers. System logs contain events logged by the operating system, such as driver issues during startup
tags: windows - event logs