You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
**TEST VERSION THAT INCLUDES DNS LOGGING:****[z-AlphaVersion.xml](https://github.com/SwiftOnSecurity/sysmon-config/blob/master/z-AlphaVersion.xml)**
10
-
11
9
Because virtually every line is commented and sections are marked with explanations, it should also function as a tutorial for Sysmon and a guide to critical monitoring areas in Windows systems.
12
10
13
-
Pull requests and issue tickets are welcome, and new additions will be credited in-line or on Git.
14
-
15
-
**[See forks of this configuration](https://github.com/SwiftOnSecurity/sysmon-config/network)**
11
+
For mature organizations needing a more scalable approach after initial proof-of-concept, see **[sysmon-modular](https://github.com/olafhartong/sysmon-modular)** by [https://github.com/olafhartong](@olafhartong).
Pull requests and issue tickets are welcome, and new additions will be credited in-line or on Git.
18
14
19
15
Note: Exact syntax and filtering choices are deliberate to catch appropriate entries and to have as little performance impact as possible. Sysmon's filtering abilities are different than the built-in Windows auditing features, so often a different approach is taken than the normal static listing of every possible important area.
20
16
17
+
**[See other forks of this configuration](https://github.com/SwiftOnSecurity/sysmon-config/network)**
0 commit comments