Lab Task Scheduler & Event Manager - echadbourne/ChadbourneSYS-140 GitHub Wiki

Lab Question 1: Explain how someone might use Task Scheduler maliciously

• Someone could use Task Scheduler to schedule a malicious program to run at a certain time or repeatedly to slow down the computer or mine for information in the background without the user knowing about it if they never check the Task Scheduler application

Lab Question 2: How might the Event Viewer be useful when investigating a security incident?

• It will allow you to view information for security incidents that occurred on that computer that you can later use regarding the cause of the incident and when it happened.