Infos:
We’re excited to announce Sysmon, a new Sysinternals utility that monitors and reports key system activity via the Windows event log, including detailed information about process creation, network connections and file creation timestamp changes. With Sysmon installed on your systems, you can collect and analyze these events to identify the presence of attackers, and correlate events across your network to track them as they traverse your network.
Neues Sysinternals-Tool hilft bei der Malware-Suche
Download:
http://technet.micro...s/bb842062.aspx
Dieser Beitrag wurde von d4rkn3ss4ev3r bearbeitet: 09. August 2014 - 14:24