Parsing Sysmon Logs on Microsoft Sentinel
March 7th, 2023 | ๐
iSpeech Jordan Drysdale // Tl;dr: Many parsers have been written and several are referenced here. This blog describes a simple
March 7th, 2023 | ๐
iSpeech Jordan Drysdale // Tl;dr: Many parsers have been written and several are referenced here. This blog describes a simple
February 15th, 2023 | ๐
https://www.ispeech.org/text.to.speech In my previous blog post I covered how Microsoft has enhanced WMI logging in the latest versions of their
February 13th, 2023 | ๐
https://www.ispeech.org ## # This module requires Metasploit: http://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## require 'msf/core' require 'rex' require 'msf/core/auxiliary/report' class
February 12th, 2023 | ๐
https://www.ispeech.org Sysmon is a tool written by Mark Russinovich that I have covered in multiple blog post and even wrote
May 15th, 2020 | ๐
https://www.ispeech.org Speaker: Eric Conrad, CTO, Backshore Communications; Senior Instructor, Co-Author SEC511 and SEC542, Author MGT514, SANS Institute Windows Sysinternal's Sysmon
April 29th, 2020 | ๐
iSpeech.org Microsoft has released Sysmon 11, and it now comes with an important feature that allows you to monitor for
August 21st, 2019 | ๐
iSpeech.org Download slides: https://www.activecountermeasures.com/presentations 5:03 Introduction, problem statement, and executive problem statement 8:19 What Sysmon is with a demo of
August 18th, 2019 | ๐
https://www.ispeech.org To the delight of Windows system administrators everywhere, Microsoft has announced that a new version of Sysmonย is coming out
June 17th, 2019 | ๐
https://www.ispeech.org/text.to.speech Paul's DigitalMunition/ Tech Segment DigitalMunition Productions 608, CEO, Corey Thuen, dns, Gravwell, Mark Russinovich, Paul's DigitalMunition, security weekly, sysmon,
September 28th, 2018 | ๐
iSpeech Carlos Perez delivers the Technical Segment on How to Operate Offensively Against Sysmon. He talks about how SysMon allows
January 22nd, 2015 | ๐
https://www.ispeech.org System Monitor (Sysmon) is a Windows system service and device driver that, once installed on a system, remains resident
Gloss