Oct 20, 2025 · 8 min read · Sysmon is a Windows system monitoring tool that logs detailed events like process creation, network connections, file changes, DLL loads, and registry modifications into Windows Event Logs for threat hunting and forensics. Sysmon don’t collect every...
Join discussion
Aug 30, 2024 · 2 min read · Görev Tanımı Windows sistemdeki sysmon loglarını inceleyerek gerçekleşen siber saldırıyı ve tehdit aktörünün tespitini yapın. Saldırganın bıraktığı izleri takip ederek saldırının nasıl gerçeleştiğini ve hangi MITRE ATT&CK tekniklerinin kullanıldığı b...
Join discussion
Feb 1, 2024 · 3 min read · Security on a Shoestring If you like me and work for a small shop or a local municipality then the following tools might be up your alley. This post is geared toward trying to build some security on little or no budget, and primarly for PCs. Let's di...
Join discussion