WMI Monitor Logo

WMI Monitor

0
Free
Visit Website

Monitor WMI consumers and processes, detecting potential malicious activity. This PowerShell script monitors WMI consumers and processes, detecting potential malicious activity. **Usage:** 1. Run PowerShell as administrator. 2. Import the WMIMonitor.ps1 module. 3. Create a new event subscriber. 4. Test the process call create function. 5. Check the Application Event log for EID 8. **Disable logging:** 1. Open an Administrator PS shell. 2. Run Remove-SubscriberMonitor. 3. Confirm the event subscriber and all associated WMI objects have been successfully removed.

FEATURES

ALTERNATIVES

Comprehensive endpoint security solution providing proactive defenses, remediation tools, and centralized management to prevent threats and ensure uptime.

Endpoint security solution for businesses with advanced threat protection and management

SharpAppLocker provides a C# adaptation of the Get-AppLockerPolicy cmdlet for managing application control policies.

A comprehensive utility that shows what programs are configured to run during system bootup or login, and when you start various built-in Windows applications.

Avira Free Security is an all-in-one security, privacy, and performance app for Mac, providing real-time protection, password management, VPN, and more, all for free.

Absolute Security provides a comprehensive cybersecurity platform that offers endpoint-to-network access coverage, automated security compliance, and secure endpoint and access solutions.

Comprehensive cybersecurity platform for hybrid and multi-cloud environments

Automated and flexible approach for deploying Windows 10 with security standards set by the DoD.

PINNED