.. /
psloglist.exe
Dumps event logs on a local or remote system
Logs
Clear Security event log
psloglist.exe -nobanner -i 99999 -c \\W10.ad.bitsadmin.com Security
Usecase
Cover tracks clearing past logon events
Comments
Be aware that this leaves an event stating that the Security event log has been cleared (event id 1102)
Mitre Att&ck
T1070.001
List events in the Security event log
psloglist.exe -nobanner -s \\W10.ad.bitsadmin.com Security
Usecase
Identify which IPs logons of privileged users are originating from