SysmonSearch
SysmonSearch copied to clipboard
JPCERTCC
Investigate suspicious activity by visualizing Sysmon's event log
Please give me the exapmle of following: //monitor rule file path "savepath": "[path to the script]/rule_files" I can't understand what "monitor rule" is. Regards,
After following the steps as mentioned in the wiki > https://github.com/JPCERTCC/SysmonSearch/wiki/how-to-install#stixioc-server-setup I run up to the following response from the StixIoc server (on both Windows 7 x64 and Ubuntu 18.04...
Bumps [certifi](https://github.com/certifi/python-certifi) from 2019.9.11 to 2022.12.7. Commits 9e9e840 2022.12.07 b81bdb2 2022.09.24 939a28f 2022.09.14 aca828a 2022.06.15.2 de0eae1 Only use importlib.resources's new files() / Traversable API on Python ≥3.11 ... b8eb5e9 2022.06.15.1...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [certifi](https://github.com/certifi/python-certifi) from 2019.11.28 to 2022.12.7. Commits 9e9e840 2022.12.07 b81bdb2 2022.09.24 939a28f 2022.09.14 aca828a 2022.06.15.2 de0eae1 Only use importlib.resources's new files() / Traversable API on Python ≥3.11 ... b8eb5e9 2022.06.15.1...
My index name is not winlogbeat-* so nothing can not display on SysmonSearch Dashboard. Which part I should change to display log on Dashboard? plz This is the noti 
