Understanding Sysmon — Architecture and Event Collection Mechanisms
Tags
attack-pattern: Data Tool - T1588.002
Common Information
Type Value
UUID 40274f4d-7285-44c6-b43b-ef5f50264638
Fingerprint 79f8f37b3a50c04
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 27, 2024, 4:21 p.m.
Added to db Sept. 27, 2024, 6:49 p.m.
Last updated Dec. 21, 2024, 6:58 p.m.
Headline Understanding Sysmon
Title Understanding Sysmon — Architecture and Event Collection Mechanisms
Detected Hints/Tags/Attributes 15/1/2
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Details 168 Infosec on Medium https://medium.com/feed/tag/infosec 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 4
sysmondrv.sys
Details File 28
sysmon64.exe