ZDNet

Sysinternals new Sysmon tool looks for intruder traces

For the first time in almost two years, Microsoft's Mark Russinovich has added a new tool to the Sysinternals tool suite. The new tool is Sysmon which monitors for and logs certain specific events.
TechRadar

Microsoft launches Linux version of Windows Sysmon

The popular Sysmon system monitoring utility for Windows now has a native version for Linux, written by Microsoft itself. A part of the Sysinternals tool, the Sysmon utility is often pitched as an ...
Bleeping Computer

Sysmon Getting DNS Query Logging with Querying Process Name

To the delight of Windows system administrators everywhere, Microsoft has announced that a new version of Sysmon is coming out this week that will include the ability to log DNS queries performed on a ...
ZDNet

Microsoft Sysmon adds support for detecting Process Herpaderping attacks

Microsoft has released a new version of the Sysinternals package and updated the Sysmon utility with the ability to detect Process Herpaderping and Process Hollowing attacks. Systems running the ...