Timeline Tool Coming Soon

Provides an easy way to convert an incident logsheet to a nicely formatted timeline.

Simple to use, just paste your log in the input box and generate. The fields are simple: event datetime, description, category. Category is at the end for ease of editing.


Initial Infection

User bwillis received a credential phish and compromised credentials.

File Activty

Detected powershell executing from the logs.

Isolation

SOC Quarantined workstation

Incident Response Team

The incident response team engaged our CIRT to remedy the malware.

Malware Spread

We noticed more systems affected and begun isolating.