Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Sysinternals: Procmon and Sysmon update SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Sysinternals: Procmon and Sysmon update

New versions of Procmon and Sysmon were released.

Sysmon supports a new rule: FileDeletedDetected. Use it to log deletions (without archiving the deleted file).

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com DidierStevensLabs.com

 DidierStevens

597 Posts
ISC Handler
Apr 25th 2021
Thread locked Subscribe Apr 25th 2021
7 months ago
Thank you Didier
 Anonymous
Quote Apr 25th 2021
7 months ago

Sign Up for Free or Log In to start participating in the conversation!