This website uses cookies to provide an optimal user experience.

Tag: Sysmon

Deploy Sysmon and collect additional data with Sentinel and the AMA agent

System Monitor (Sysmon) is one of the most common add-ons for Windows logging. With Sysmon, you can detect malicious activity by tracking code behavior and network traffic. Sysmon is part of the Sysinternals package and is owned by Microsoft. Sysmon can be used…

Jeffrey, January 26, 2023 2 10 min read

Security

Use Sysmon for monitoring servers with Microsoft Sentinel

Jeffrey, July 27, 2021 0 6 min read

Laatste nieuws

Microsoft Defender SmartScreen – how to use SmartScreen and Phishing protection

Deploy Microsoft Defender for Endpoint on iOS using Intune/MEM

Microsoft Defender for Endpoint series – Tips and tricks/ common mistakes – Part10

Microsoft Defender for Endpoint series – Automation via Logic Apps and Sentinel – Part9

How to protect Azure storage accounts (Blob) using Defender for Storage

Deploy Sysmon and collect additional data with Sentinel and the AMA agent

Tag: Sysmon

Deploy Sysmon and collect additional data with Sentinel and the AMA agent

Use Sysmon for monitoring servers with Microsoft Sentinel

Microsoft MVP

MDE blog series

Supporting this blog

Latest topics

Microsoft Defender SmartScreen – how to use SmartScreen and Phishing protection

Deploy Microsoft Defender for Endpoint on iOS using Intune/MEM

Microsoft Defender for Endpoint series – Tips and tricks/ common mistakes – Part10

Microsoft Defender for Endpoint series – Automation via Logic Apps and Sentinel – Part9

How to protect Azure storage accounts (Blob) using Defender for Storage

Deploy Sysmon and collect additional data with Sentinel and the AMA agent

Social Media

Trending Slider

Microsoft Defender SmartScreen – how to use SmartScreen and Phishing protection

Deploy Microsoft Defender for Endpoint on iOS using Intune/MEM

Microsoft Defender for Endpoint series – Tips and tricks/ common mistakes – Part10

Microsoft Defender for Endpoint series – Automation via Logic Apps and Sentinel – Part9

How to protect Azure storage accounts (Blob) using Defender for Storage

Deploy Sysmon and collect additional data with Sentinel and the AMA agent

Today's pick

Latest

Popular

Microsoft Defender SmartScreen – how to use SmartScreen and Phishing protection

Deploy Microsoft Defender for Endpoint on iOS using Intune/MEM

Microsoft Defender for Endpoint series – Tips and tricks/ common mistakes – Part10

Microsoft Defender for Endpoint series – Automation via Logic Apps and Sentinel – Part9

Fast response with Azure AD Continuous Access Evaluation (CAE) and Conditional Access

Downloads blokkeren via Conditional Access App Control vanuit Microsoft Endpoint Manager

Android Enterprise fully managed beschikbaar in Microsoft Intune voor zakelijke omgevingen

Android Enterprise via Microsoft Endpoint Manager als vervanger van Android device administrator