How to Go from Responding to Hunting with Sysinternals Sysmon

Posted on in Presentations

Sysinternals Sysmon can help you precisely detect and track an attacker’s movement inside your Windows networks, but only if you know how to use it effectively. Get a deep dive from Sysmon’s author on its design, capabilities, latest enhancements, and guidance for collecting and alerting on its rich forensic data with popular log analytics services.

Mark Russinovich


Chief Technology Officer, Microsoft Azure

Share With Your Community