New Service Installation on Windows

The following splunk query will return results of all new services installed on windows machines (this works on any windows OS tested thus far).

Ensure the Splunk App for Windows is installed grab it here: https://apps.splunk.com/app/742/

Share This:

Leave A Comment?