S0645Windows

S0645Wevtutil

Platforms
1
ATT&CK
14.1
References
2

Description

[Wevtutil](https://attack.mitre.org/software/S0645) is a Windows command-line utility that enables administrators to retrieve information about event logs and publishers.(Citation: Wevtutil Microsoft Documentation) Documented platforms: Windows. Catalogued in ATT&CK 14.1. 2 references curated. Documented platforms: Windows. Catalogued in ATT&CK 14.1. 2 references curated.

Platforms· 1

Windows

References

  1. https://attack.mitre.org/software/S0645
  2. https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/wevtutil

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
esentutl
Software
certutil
Technique
Log Enumeration
Sub-technique
Clear Windows Event Logs
LOLbin
Eventvwr.exe
Software
Windows Credential Editor
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.