Jump to content

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?

Or sign in with one of these services
Sign Up

Browse
- Forums
- Staff
- Online Users
- More
Activity
WeLiveSecurity
Virus Radar
ESET Technologies
Downloads
More
- More

Search In

Everywhere
Topics
This Forum
This Topic
More options...

Find results that contain...

All of my search term words
Any of my search term words

Find results in...

Content titles and body
Content titles only

General Discussion

Sysmon Setup

JosephKing

By JosephKing,
April 29 in General Discussion

Share

Recommended Posts

JosephKing

JosephKing 1

Posted April 29

- Share

Posted April 29

Sysmon is essential and sets up in just a minute.

https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

Download Sysmon and put in any directory. Open cmd and cd to the directory.
Cmd> Sysmon.exe -I -h sha256 -n /accepteula

Done.

Open Event Viewer: Microsoft\Windows\Sysmon.

Enjoy! There's a lot of different config.xml files out there to create different info in the event logs.

https://www.blumira.com/enable-sysmon/

Quote

Link to comment

Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest

Reply to this topic...

× Pasted as rich text. Paste as plain text instead

Only 75 emoji are allowed.

× Your link has been automatically embedded. Display as a link instead

× Your previous content has been restored. Clear editor

× You cannot paste images directly. Upload or insert images from URL.

Insert image from URL

×

Go to topic listing

Recently Browsing 0 members
- No registered users viewing this page.

FAQ

How do I report a false positive or whitelist my software with ESET?

How to submit Suspicious file to ESET Research Lab via program GUI.

How do I create a Process Monitor file?

How do I use ESET Log Collector?
Topics
- 3
  
  I found a website that leaks ESET keys but it seems not to be blocked.
  
  By cindylau
  Started Yesterday at 08:43 AM
  
  23 minutes ago, Marcos
- 3
  
  Where do you enter ID.me promo code?
  
  By Guest Bret
  Started 12 hours ago
  
  50 minutes ago, Marcos
- 2
  
  Configuration of Apache HTTP Proxy as a reverse proxy for remote clients
  
  By User 999
  Started 7 hours ago
  
  1 hour ago, User 999
- 1
  
  PC got restarted over and over again when I download the games in Steam
  
  By coltlau
  Started 4 hours ago
  
  1 hour ago, Marcos
- 1
  
  Encrypted virus files cannot be detected by intelligent scanning, and can only be detected manually
  
  By Guest esafenet
  Started 3 hours ago
  
  1 hour ago, Marcos

×

Browse
- Back
- Forums
- Staff
- Online Users
Activity
- Back
- All Activity
- My Activity Streams
  - Back
  - New content
- New content
- Leaderboard
- Search
WeLiveSecurity
Virus Radar
ESET Technologies
Downloads

×

Create New...