Sysmon Security Monitoring App for Splunk

Splunk Community

This app provides alerts built with splunk search macros to detect a wide variety of suspicious activity in Windows environment via Windows Sysmon and Event Logs. It is designed for 'blue-team' team members.

Ask a Question View in Splunkbase

1 topic and 0 replies mentioned Sysmon Security Monitoring App for Splunk in

Splunk Community
- Find Answers
  - Splunk Administration

Body always empty - Sysmon events are always in XML format

Contributor

‎06-25-2024 08:44 AM

0 Replies

676 Views

Latest Replies

Body always empty - Sysmon events are always in XML format

Contributor

‎06-25-2024 08:44 AM

676 Views

0 Replies

0 Karma

My Topics

Sysmon Security Monitoring App for Splunk

Are you a member of the Splunk Community?

Sysmon Security Monitoring App for Splunk

Body always empty - Sysmon events are always in XML format

Body always empty - Sysmon events are always in XML format