A Microsoft Sysinternals Sysmon configuration file template with default high-quality event tracing, serving as a great starting point for system change monitoring. This file, with detailed comments and explanations, also acts as a tutorial for Sysmon and a guide to critical monitoring areas in Windows systems.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
Shuffle Automation provides an open-source platform for security orchestration, automation, and response.
StackStorm is an open-source automation platform that connects and automates DevOps workflows and integrates with existing infrastructure.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
JIMI is a flow-based orchestration automation platform that combines low-code and no-code capabilities for multi-team collaboration across IT, security, and development operations.
Fast Intercept is a security automation platform that empowers users to maximize their existing security products and automate routine tasks.
Open-source security automation platform for automating security alerts and building AI-assisted workflows.