Use EVTX files on VirusTotal with Timesketch and Sigma (Part1)A security blog for the digital forensics community on how to perform digital forensic incident response with open source tools. TDLR:VirusTotal added a new feature to allow VirusTotal Enterprise customers to download Windows XML EventLog files (.evtx) for a sandbox execution of submitted samples. This article covers how this feature can help incident responders and digital forensic analysts devel
