The Wayback Machine - https://web.archive.org/web/20220404073733/https://www.first.org/resources/papers/conf2017/Advanced-Incident-Detection-and-Threat-Hunting-using-Sysmon-and-Splunk.pdf