config: thor - powershell classic

2021-07-02 14:14:48 +02:00
parent 03e2b9d376
commit ba94b8396c
1 changed files with 5 additions and 0 deletions
@@ -176,6 +176,11 @@ logsources:
    service: powershell
    sources:
      - "WinEventLog:Microsoft-Windows-PowerShell/Operational"
+  windows-classicpowershell:
+    product: windows
+    service: powershell-classic
+    sources: 
+      - "WinEventLog:Windows PowerShell"
  windows-taskscheduler:
    product: windows
    service: taskscheduler