THM Room: Sysmon |
Introduction
What?
Sysmon (SysInternals Suite) can be used for monitoring and logging events on Windows endpoints and environments.
Why?
To detect malicious activity by tracking code and network traffic.
THM Room: Sysmon |
Sysmon (SysInternals Suite) can be used for monitoring and logging events on Windows endpoints and environments.
To detect malicious activity by tracking code and network traffic.