@NXLog Ltd https://nxlog.co/ —Multi-Platform Log Collection Solutions with Community and Enterprise Editions available — Personal: www.hannahsuarez.me
Collecting Windows Events (including Sysmon-2) with NXLog CE & Graylog:
This post is a follow up to the post on file integrity monitoring where Windows registry monitoring is mentioned as another option. This post goes through using NXLog Enterprise Edition im_regmon module.
The Threatpost.com ‘ Infosec Insider’ column published on February 6 2019 a piece about data manipulation attacks. You can read the original article…