A comprehensive PowerShell toolkit for RDP forensics analysis, tracking connection attempts, authentication, sessions, and logoffs across Windows Event Logs for security monitoring and incident response.
events security-audit windows-server compliance remote-desktop siem event-viewer logon-analysis session-tracker rdp-forensics
-
Updated
Dec 17, 2025 - PowerShell