Sysmon_OSSEC
Sysmon_OSSEC copied to clipboard
defensivedepth
OSSEC Decoder & Rulesets for Sysmon Events
Results
2
Sysmon_OSSEC issues
Sort by
recently updated
recently updated
newest added
hi, i would like to integrate sysmon to securityonion, but did not find useful manual for that.. Can you share it with me or tell me which file and where...
Josh, Been playing with variations of this for Sysmon3 when I write my decoder similar to yours with parent and type as windows, OSSEC stops alerting on other windows events....
