Working with OS
Command & Snap-Ins
OS Features
OS Features II
OS Features III
100

This is a critical database. It is core to every Windows system, that stores everything about a PC, incliding information on all the hardware, network information, user preferences, file types, passwords, desktop, virtually everything.

The Registry

100

The command that serves as a full service Registry editing tool. 

REG

100

This type of log records anything that has to do with applicagtions or proframs outside of Windows syustem files themselves. 

Application Log

100

This event level provides information that went well or successfully. 

Information

100
 A feature on the MacOS that can find files and prefences.

Spotlight

200

Provide the value name type for each definition below:

1. These are moste flexible type of value and are very common. You can put any form of dat in these. 

2. These values store nothing more than long strings of ones and zeros. 

3. These values are like Binary values but are limited to exactly 32 bits. 

4. These values are like Binary values but are limited to exaclty 64 bits.

1. Sting value

2. Binary value

3. DWORD value

4. QWORD value

200

This command can modify the registry in only on way, adding ( or registering) dynamidc link library (DLL files) as a command components in the Registry. 

REGSVR32

200

This type of log records security events such as failed logons.

Security Log

200

This event level is not an error but provides a warning about one, like low disk space. 

Warning

200
A feature on the macOS that is responsible for managing sesitive passwords anc certificates. 

Keychain

300

A named group of functions that defines what you can do with the object it represents. 

Class Object

300

The executable name for System Configuration used to edit and troubleshoot operating system and program startup processes and services.

MSCONFIG

300

This log tracks setup and updates events for your Windows system. 

Setup Log

300

This event level notes that something is wrong, such as a file not loading.

Error

300

Apple's version of a Microsoft account. 

AppleID

400

What are the following Registry Components called:

HKEY_CLASSES_ROOT

HKEY_CURRENT_USER

HKEY_LOCAL_MACHINE

HKEY_USERS

HKEY_CURRENT_CONFIG

Root Key or The Five Subgroups
400

This opens the event viewer.

eventvwr.msc or from Control panel | Administrative Tools

400

This log tracks anything having to do with your Windows operating system. 

System Log

400

This event level explains somehting a little more serious is happened, like the system unexpectedly powering off instead of shutting down cleanly. 

Critical

400

Apples first storage encryption feature. 

FileVault

500

These are registry files stored in \%SystemRoot%\System32\config folder and each user account folder.

Hives

500

Allows a user to access/open the Certificate Manager. 

CERTMGR.MSC or  from Control Panel | Administrative Tools 

500

This event level provides extra information that is probable only useful when debugging an application.

Verbose 

500

When a user shares a file with an another Apple device. 

Airdrop

500

This is a tool available on macOS used for backing up and restoring folders. 

Time Machine

M
e
n
u