The first purpose of this project is to establish an exhaustive map of the correspondence between Windows advanced audit policy settings and event ids.
I then added the estimated volume of each policy settings if enabled.
I also marked audit policy settings recommended by ANSSI to be enabled.
This project is based on the documentation for Windows 10/11 and Windows Server >= 2016
If you have ideas to improve this project, contributions are of course welcome <3