Tuesday, December 7, 2021

SysmonLinux.Util: PowerShell Module for parsing logs generated by Sysinternals Sysmon for Linux

Description

PowerShell Module for parsing logs generated by Sysinternals Sysmon for Linux. The module can parse one or more Syslog files from a Linux system and allow for the search of specific events that meet a given criteria. The module can be use also for aiding in the generation of filter rules based on the resulting objects of queries performed against the logs, greatly speeding the creation and tunning of Sysmon configuration files.

Install

The module is available from the PowerShell G…

Read More

Latest news
Related news