sysmon-config icon indicating copy to clipboard operation
sysmon-config copied to clipboard

Published 20 hours ago verified publisher icon SwiftOnSecurity

Sysmon v15.0 & 29 Events

Open Achi79 opened this issue 1 year ago • 2 comments

This update to Sysmon, an advanced host security monitoring tool, sets the service to run as a protected process, hardening it against tampering, adds a new event, FileExecutableDetected, for when new executable images are saved to files, and fixes a system hang occurring in certain situations due to an interaction between network and file system events.

There are now 29 events. Will this config be updated?

Achi79 avatar Jun 30 '23 06:06 Achi79