Automating the deployment of Sysmon for Linux 🐧 and Azure Sentinel in a lab environment 🧪 - Microsoft Community Hub
Florian Roth on X: "I've extended our Sysmon config with a big block of suspicious/malicious executable creations using the new FileExecutableDetected (ID 29) event available in Sysmon v15 blog post by @olafhartong
![Collectez des logs avec Sysmon sous Windows - Optimisez la sécurité informatique grâce au monitoring - OpenClassrooms Collectez des logs avec Sysmon sous Windows - Optimisez la sécurité informatique grâce au monitoring - OpenClassrooms](https://user.oc-static.com/upload/2021/01/18/161097690997_image40.jpg)
Collectez des logs avec Sysmon sous Windows - Optimisez la sécurité informatique grâce au monitoring - OpenClassrooms
![Visualise Sysmon Logs and Detect Suspicious Device Behaviour -SysmonSearch- - JPCERT/CC Eyes | JPCERT Coordination Center official Blog Visualise Sysmon Logs and Detect Suspicious Device Behaviour -SysmonSearch- - JPCERT/CC Eyes | JPCERT Coordination Center official Blog](https://blogs.jpcert.or.jp/en/.assets/fig1_2-4b7907ac.png)