# 16\_Best Practices - [Windows Logging Recommendations](https://docs.blusapphire.io/16_best-practices/windows-logging-recommendations.md): Windows Event Log Recommendations By Log Source - [Windows Security Log recommendations](https://docs.blusapphire.io/16_best-practices/windows-logging-recommendations/windows-security-log-recommendations.md) - [Windows General Log Recommendations](https://docs.blusapphire.io/16_best-practices/windows-logging-recommendations/windows-general-log-recommendations.md) - [Windows Advanced Auditing Recommendations](https://docs.blusapphire.io/16_best-practices/windows-logging-recommendations/windows-advanced-auditing-recommendations.md): Advanced Audit Logging for better visibility using Domain Group Policy (Preferred) - [Lateral Movement Logging Recommendations](https://docs.blusapphire.io/16_best-practices/lateral-movement-logging-recommendations.md): Windows Event IDs to monitor - [Best Data Sources for Detection](https://docs.blusapphire.io/16_best-practices/best-data-sources-for-detection.md): This page attempts to provide the reader an understanding of the best data sources that provide detection based on Mitre ATT\&CK framework - [Cloud Incident Readiness](https://docs.blusapphire.io/16_best-practices/cloud-incident-readiness.md): Key logs for cloud incidents --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.blusapphire.io/16_best-practices.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.