Sysmon

Browse 10 sysmon tools

FEATURED

Push Security Logo
Push Security
Zero Trust
CybersecRadars Logo
CybersecRadars
Threat Management
Hudson Rock Logo
Hudson Rock
Threat Management

Get Featured

Submit your tool →
Kunai Logo
Kunai

Kunai is a Linux-based system monitoring tool that provides real-time monitoring and threat hunting capabilities.

Threat Hunting
Free
Windows EVTX Samples [200 EVTX examples] Logo
Windows EVTX Samples [200 EVTX examples]

Container of 200 Windows EVTX samples for testing detection scripts and training on DFIR.

Digital Forensics and Incident Response
Free
sysmon-modular Logo
sysmon-modular

A Sysmon configuration repository for customizing Microsoft Sysinternals Sysmon configurations with modular setup.

Security Information and Event Management
Free
ThreatHunting Logo
ThreatHunting

A Splunk app mapped to MITRE ATT&CK to guide threat hunts.

Threat Hunting
Free
Sysmon for Linux Logo
Sysmon for Linux

Sysmon for Linux is a tool that monitors and logs system activity with advanced filtering to identify malicious activity.

Digital Forensics and Incident Response
Free
sysmon-config Logo
sysmon-config

A Sysmon configuration file template with detailed explanations and tutorial-like features.

Security Information and Event Management
Free
Forensia Logo
Forensia

Anti-forensics tool for Red Teamers to erase footprints and test incident response capabilities.

Offensive Security
Free
SysmonSearch Logo
SysmonSearch

SysmonSearch makes event log analysis more effective by aggregating Microsoft Sysmon logs and providing detailed analysis through Elasticsearch and Kibana.

Security Information and Event Management
Free
Sentinel ATT&CK Logo
Sentinel ATT&CK

A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel

Threat Hunting
Free
Cyber Threat Hunting Logo
Cyber Threat Hunting

A collection of tools and resources for threat hunters.

Threat Hunting
Free

Stay Updated with Mandos Brief

Get strategic cybersecurity insights in your inbox

TRENDING CATEGORIES

Digital Forensics and Incident Response
Digital Forensics and Incident Response (DFIR) tools for digital forensic analysis, evidence collection, malware analysis, and cyber incident investigation.
524
Threat Intelligence Platforms
TIP for collecting, analyzing, and sharing cyber threat data, indicators of compromise (IOCs), and threat feeds.
413
Managed Detection and Response
Managed Detection and Response (MDR) services that provide 24/7 threat monitoring, detection, and response capabilities managed by security experts.
299
Multi-Factor Authentication and Single Sign-On
Multi-factor authentication (MFA) and single sign-on (SSO) solutions for secure user authentication and access control.
292
Identity Governance and Administration
Identity Governance and Administration (IGA) platforms for identity lifecycle management, access governance, role management, and compliance reporting.
285
View All Categories →

POPULAR

RoboShadow Logo
RoboShadow
Vulnerability Assessment
OSINTLeak Real-time OSINT Leak Intelligence Logo
OSINTLeak Real-time OSINT Leak Intelligence
Threat Intelligence Platforms
Cybersec Feeds Logo
Cybersec Feeds
Threat Intelligence Platforms
TestSavant AI Security Assurance Platform Logo
TestSavant AI Security Assurance Platform
AI Red Teaming
Fabric Platform by BlackStork Logo
Fabric Platform by BlackStork
Security Information and Event Management
View Popular Tools →