- Sysmon v15. 0, Autoruns v14. 1, and Process Monitor v3. 95
This update to Sysmon, an advanced host security monitoring tool, sets the service to run as a protected process, hardening it against tampering, adds a new event, FileExecutableDetected, for when new executable images are saved to files, and fixes a system hang occurring in certain situations due to an interaction between network and file system events
- Sysmon v15. 14 | Microsoft Community Hub
Learn about the latest updates to Sysmon v15 14
- Sysmon - The rules about rules | Microsoft Community Hub
In Sysmon 9 0 we introduced the concept of Rule Groups as a response to satisfy the competing demands of one set of users who wanted to combine their rules using ‘AND’ along with those who wanted to continue using ‘OR’
- Sysmon v12. 0, Process Monitor v3. 60, Procdump v10. 0 and ARM64 ports
Learn about the latest changes to Sysmon (v12 0), Process Monitor (v3 60), Procdump (v10 0) and several ARM64 ports
- Sysmon v15. 12 | Microsoft Community Hub
This update to Sysmon fixes a case of system hanging on uninstall, a crash occurring while parsing configuration files, and a memory leak
- RDCMan v2. 92, Sysmon v14. 14, and ZoomIt v6. 12
This update to Sysmon, an advanced host monitoring tool, fixes a timeout occurring with FileDelete and FileDeleteDetected events on low-speed media
- VBScript deprecation: Detection strategies for Windows
Examine enterprise-ready mechanisms to detect VBScript usage across all Windows platforms in preparation for deprecation
- Process Monitor 2. 0 for Linux and Sysmon v15. 15
Process Monitor for Linux, a convenient and efficient way for developers to trace the syscall activity on the system, is now updated to support a broader range of Linux distributions
|