Dude, this is user browser history... I'm sorry i'm just not morally ok with helping you achieve that goal. What is your end goal? Perhaps there is a better way than enumerating websites people have visited in their browser.
k
k3nd0r
04/01/2020, 9:40 PM
Without a better source of logs at my disposal, this is how I was hoping to get a source of downloads for malicious files in the environment. Do you think there is a better way to achieve this with the tool?
t
terracatta
04/01/2020, 9:42 PM
Yes, check out ntfs_journal_events table and file integrity monitoring. You can monitor user default download folders for any downloads that way...and you can cross reference any hashes of those files later on if you need to.