Tag Archives: Audit

Audit files opened on a server — without turning on auditing

The security officer contacted me with was concern about an administrator looking at files in a user’s home directory.  I was asked whether I could watch the files being opened without turning on auditing.  OpenFilesUserSessionAuditor.vbs parses session data, and compiles a list of what … Continue reading

Posted in Security, VbScript, Windows Administration | Tagged | Leave a comment