Windows Security Log Analysis

Upload .evtx files from Windows servers, domain controllers, or endpoints to detect suspicious activity and security threats.

Windows ServerDomain ControllersEndpointsSysmon

Click to upload or drag and drop

.evtx or .zip — up to 50 MB

Detects

Brute force attempts

Persistence techniques

Privilege escalation

Suspicious account activity

PowerShell abuse

Defender alerts

🔒Files deleted automatically after analysis✓No account required📋Supports exported Windows Event Viewer logs

🛡Security detectionsMITRE-mapped findings

🤖AI summarySOC-style triage report

📊Health score0–100 system rating