ZDNet

Sysinternals new Sysmon tool looks for intruder traces

For the first time in almost two years, Microsoft's Mark Russinovich has added a new tool to the Sysinternals tool suite. The new tool is Sysmon which monitors for and logs certain specific events.
Bleeping Computer

Microsoft releases Linux version of the Windows Sysmon tool

Microsoft has released a Linux version of the very popular Sysmon system monitoring utility for Windows, allowing Linux administrators to monitor devices for malicious activity. For those not familiar ...
Bleeping Computer

Microsoft Sysmon can now block malicious EXEs from being created

Microsoft has released Sysmon 14 with a new 'FileBlockExecutable' option that lets you block the creation of malicious executables, such as EXE, DLL, and SYS files, for better protection against ...
ExtremeTech

Microsoft Brings Built-In Sysmon Security Monitoring to Windows 11

Share on Facebook (opens in a new window) Share on X (opens in a new window) Share on Reddit (opens in a new window) Share on Hacker News (opens in a new window) Share on Flipboard (opens in a new ...