Does anyone used to collect the audit log from mssql
Could you please share the idea how to collect the audit log because i tried to collect the trc file but i found out that trc file was in unreadable format
MSSQL C2 is collected via SIEM Collector utility. The trc file is binary, you can't read it with normal text editor.
Here is the manual of SIEM Collector 11 which you can use for C2 configuration.
Download the new ePolicy Orchestrator (ePO) Support Center Extension which simplifies ePO management and provides support resources directly in the console. Learn more about ePO Support Center