Endpoint detection Superpowers on the cheap — part 1

Sysmon 8.0, a leap forward in event annotation

Last night (for me) Mark Russinovich released a new version of Sysmon, raising…

Endpoint detection Superpowers on the cheap — part 3 — Sysmon Tampering

Endpoint detection Superpowers on the cheap — part 2 — Deploy and Maintain